55e1a44311fdca536d1f6a2d96762cc332dc966f22e352a9f79fcbbe42d53ae3 | Triage

Sharing

General

Target

55e1a44311fdca536d1f6a2d96762cc332dc966f22e352a9f79fcbbe42d53ae3
Size

1.9MB
MD5

c6c34bba14b0adf6e16b3d2600fe2504
SHA1

1de31aa051807ea1ab7f2f638877dc318bb640dd
SHA256

55e1a44311fdca536d1f6a2d96762cc332dc966f22e352a9f79fcbbe42d53ae3
SHA512

ff21edb735db71959f58a3901035bde478425b1f76ef9d185c97f54270f11dadc2caa52c4ed0d1438cb071af076b02a37cfef2662f2f165356234bbd1d167d84
SSDEEP

49152:Lt6eG8Daniz6CVCNDQHcWLhJ+UHmXBq4rA6XTzVOqhKPDV2kIIE2:LMeG82no6nFQHZv+OmRq4rA8IqYPfIr2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55e1a44311fdca536d1f6a2d96762cc332dc966f22e352a9f79fcbbe42d53ae3

Files

55e1a44311fdca536d1f6a2d96762cc332dc966f22e352a9f79fcbbe42d53ae3
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 183KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fkllveoz
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

olrvbhmj
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE