c44aba1a62f830640310f891cb316df0N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c44aba1a62f830640310f891cb316df0N.exe
Size

3.0MB
MD5

c44aba1a62f830640310f891cb316df0
SHA1

9492e8e6d3e8bd1cbe9b71354084814a0cb69328
SHA256

9117d733a2ce9a6eac932d7af1d708f97c2880a2e0c76735426bf853076a6069
SHA512

3f89b6e367543024a5df1aa45e9292bab255d652286ce6d46301a2f965b6bf2dec8f24a1a40a245edca3806721c025f8b6b85ae0e5754a5a8b6926442a29a05a
SSDEEP

49152:xSSpHmcMG9YrkhjvxyL9z1lyLBlBW3yQLIJ9tUJRzSMD8cyt2sMKsOGcv:xYtGCrkhLxczvy3gIJ9tUJdSMD3yt66

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c44aba1a62f830640310f891cb316df0N.exe

Files

c44aba1a62f830640310f891cb316df0N.exe
.dll windows:6 windows x64 arch:x64

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 272KB - Virtual size: 604KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bagyiwxo
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

eggirefc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE