C7Kw5maKhr7sTzazuAiCTQZ8ksSRxhy[.]exe | Triage

Sharing

General

Target

C7Kw5maKhr7sTzazuAiCTQZ8ksSRxhy.exe
Size

3.8MB
MD5

7e1b8d6fcd5a600e4461574f65df0204
SHA1

734c65802945583782747d1f4ec1d3e42a21e6ef
SHA256

601021abd2f8d5e7ebbabcebaa932b4431ef963d8c582119efb12f368caf4458
SHA512

38fb6685ebd72d22fcf9f4aebcf2b8329b4cf7c533698ca6044fb6459c3fdea7c5b7e1d0c85919632b3114cfd32aefc2fc257fc9b3a63345c1fbc28d17a8e218
SSDEEP

24576:LAYDd7IFrBQ6VcfCOMN8YbaSgV8ohL8oy91FNemMXXVjkNux0OGY93wugHGVpdbx:ktTa5moqvUfxuY9AxHQdQYGYlNN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
C7Kw5maKhr7sTzazuAiCTQZ8ksSRxhy.exe

Files

C7Kw5maKhr7sTzazuAiCTQZ8ksSRxhy.exe
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

VLHcca
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

LCrbqY
Size: 512B - Virtual size: 364B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

aA
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE