716ffb96e37e65bd910f40a78242935c88e4e59058d593ca3bb72ca4aee9644b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

716ffb96e37e65bd910f40a78242935c88e4e59058d593ca3bb72ca4aee9644b
Size

1.8MB
MD5

5e7ab38cfb33905298e36afd5358100a
SHA1

cff9816143a85832b877d1f271390bd0f17cf717
SHA256

716ffb96e37e65bd910f40a78242935c88e4e59058d593ca3bb72ca4aee9644b
SHA512

66cad5c0e189e75b7326eaec17c5af329859248ff4e0b2bfbe508da47e25788b23316bcdc7c8d35a02642022853e2ffbd100d94d47892c1fa93e14c0eee1e10b
SSDEEP

49152:7F5GJP/VKjqRpqC0EIH2dkzYbu+1UFveJCwP3zS8:GJPTRpIXYbu+OvGf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
716ffb96e37e65bd910f40a78242935c88e4e59058d593ca3bb72ca4aee9644b

Files

716ffb96e37e65bd910f40a78242935c88e4e59058d593ca3bb72ca4aee9644b
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 183KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wncjrsjy
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fjsgsbgw
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE