f8e874e5c8471c02805a465fb1ad815b6e563606c1b4a19e5de296dd256d0d85 | Triage

Sharing

General

Target

f8e874e5c8471c02805a465fb1ad815b6e563606c1b4a19e5de296dd256d0d85
Size

1.8MB
MD5

48fdde9885c4259c717e27917c1a593d
SHA1

89c70a62567c11245bc90baaf99effa45fe4e59a
SHA256

f8e874e5c8471c02805a465fb1ad815b6e563606c1b4a19e5de296dd256d0d85
SHA512

af3d353db400cc2ee7daa0e992cafedc8e28a093761fefa531f5f679bf811225f9939e3b4752d777e230fc54c86c6c86c5a10bca153e0384329aa6c569923ec2
SSDEEP

49152:Bd/RZa+/whApWtyuunUfmBu5bgHFAhrU2LkJ:Bj4QCEWt7yqm0xoDg4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f8e874e5c8471c02805a465fb1ad815b6e563606c1b4a19e5de296dd256d0d85

Files

f8e874e5c8471c02805a465fb1ad815b6e563606c1b4a19e5de296dd256d0d85
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 183KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

veichdza
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xbtbhjyq
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE