66e967dc6ce94571bec0df35a72dbde0N[.]exe | Triage

Sharing

General

Target

66e967dc6ce94571bec0df35a72dbde0N.exe
Size

922KB
MD5

66e967dc6ce94571bec0df35a72dbde0
SHA1

d0cc1cbbbe8394f5859ee2547578f4cc1aab3f6a
SHA256

2fed7a6e8ac5c74fafe4ba0cb01026c7b6f918fcce51689d2acdaac7d710af5f
SHA512

810b3883196bfac659f235fd4acb4bd1145d0012c5ec1b7cfc3153ef4cece73debbf47febacb7779124cb62fcd635ba664a10b41ce0c93770fe1365fb6d80f21
SSDEEP

12288:OZXbE82g0k39jxWuOHaj5xViK/p4geDN57Wv8jI6IYG4FAoXssb+JA:0ggh9jQufHp7ep9w8c6IYG4FAG+W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66e967dc6ce94571bec0df35a72dbde0N.exe

Files

66e967dc6ce94571bec0df35a72dbde0N.exe
.dll windows:5 windows x86 arch:x86

4416635ea1fa031255507b353d3b5917

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

WritePrivateProfileStringA

Sections

Size: 124KB - Virtual size: 768KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

edlyikip
Size: 792KB - Virtual size: 792KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nbnyloak
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE