ffa7a8bd303db45f8d4a6cb37d3f7f8b9431c6bc64950347b94db9812d3598c1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ffa7a8bd303db45f8d4a6cb37d3f7f8b9431c6bc64950347b94db9812d3598c1
Size

74KB
MD5

22ee7cd93caa99ae801404519d41ad8a
SHA1

fc861f02c90cdf591ea8c8cd326a45b834504562
SHA256

ffa7a8bd303db45f8d4a6cb37d3f7f8b9431c6bc64950347b94db9812d3598c1
SHA512

3e7fc5b4ca28d829ac38e6397a413d661a085848c7f69f39fe662153b05a1e3169ed085b599362ad99b5cf1ba8cb084612a85ed797784d1845ff453a8c037c88
SSDEEP

1536:9nJ2+82YLrxTRfIU3D9s8B2zAv1WOVy2vPiTlKbLOhLp:VT3YnxTRf7ZsM28dvy2vPiTlKbLOBp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ffa7a8bd303db45f8d4a6cb37d3f7f8b9431c6bc64950347b94db9812d3598c1

Files

ffa7a8bd303db45f8d4a6cb37d3f7f8b9431c6bc64950347b94db9812d3598c1
.dll windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Sections

?t'5+
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ