6c9ceed93757cb48ec7f85f483cd906fb9a24e4e394c84f130ba07a23724c990 | Triage

Sharing

General

Target

6c9ceed93757cb48ec7f85f483cd906fb9a24e4e394c84f130ba07a23724c990
Size

1.8MB
MD5

486e4b2cf76db3355297c22657657c14
SHA1

ae1a2d6c2e5bc188961e2ff13b1c7187df5e7946
SHA256

6c9ceed93757cb48ec7f85f483cd906fb9a24e4e394c84f130ba07a23724c990
SHA512

2b35323422c1aa7a377f0b271a08623e057f2ab5263469e3014cfda52e2c09ade58b7fbd2f7db6513c66b4b2029bd437ef2dbca73256b325499a6dc654f08125
SSDEEP

49152:+dy5ZEGoBGfMvUDD9dfYx9Vs6UEv22FJihh5:GyEtGUv05dfY7sQe2FJM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6c9ceed93757cb48ec7f85f483cd906fb9a24e4e394c84f130ba07a23724c990

Files

6c9ceed93757cb48ec7f85f483cd906fb9a24e4e394c84f130ba07a23724c990
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 183KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bfbivbbj
Size: 1.6MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ckotytcl
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE