6a78a1fcbfe6e8f01a6f30f93560ab30N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6a78a1fcbfe6e8f01a6f30f93560ab30N.exe
Size

5.0MB
MD5

6a78a1fcbfe6e8f01a6f30f93560ab30
SHA1

3510bfa0c2d3862c974518203d434ee88b2384df
SHA256

91f774721daeea2585ab75e36e0a849b4f0799d982993f61e9d3a86c9646a993
SHA512

3faf1a80bd8918d479e46f498f99abcdc96f2d263319978ccba8eebfff3d71deaa19fdbd8f36186abb39e133849960521645a4e525723c2fc8d7964bfa8a9a23
SSDEEP

49152:ZavvUekU3lZCD9Pf2Sc1D1g3Aj8avCovTOzAWRUBbJ770wlwoE47QxJLYVXu+ejD:fftc1o47jWhkoQKS4qTyKMTgC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6a78a1fcbfe6e8f01a6f30f93560ab30N.exe

Files

6a78a1fcbfe6e8f01a6f30f93560ab30N.exe
.dll windows:5 windows x64 arch:x64

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Sections

.text
Size: 5.1MB - Virtual size: 5.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

RT_CODE
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 90KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data1
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.trace
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ