a7a5e246cdc47a6ca60670d9ff4d10287bac2ed705502975ef3fcc08e7aa6c64 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a7a5e246cdc47a6ca60670d9ff4d10287bac2ed705502975ef3fcc08e7aa6c64
Size

4.2MB
MD5

7166240c8249838b90bd0b278904fb9c
SHA1

514ffdea08c006de4d642648019dc83950dcb9a1
SHA256

a7a5e246cdc47a6ca60670d9ff4d10287bac2ed705502975ef3fcc08e7aa6c64
SHA512

dbcbc1890a084192a6e9a11090f91eaeda7ee30bf58114d310b55ac62076c22d6b48ebc5aa310b5f952b0b22f5463f0dad41b450ed5fa5dc942599df83610a63
SSDEEP

98304:qGgVrNwFJg7AAjPw2vXeklT91XPMCQoy+sFZAkS4LU9Dywrm:SVKFONeCT91vQ0MVSjJL6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a7a5e246cdc47a6ca60670d9ff4d10287bac2ed705502975ef3fcc08e7aa6c64

Files

a7a5e246cdc47a6ca60670d9ff4d10287bac2ed705502975ef3fcc08e7aa6c64
.exe windows:5 windows x86 arch:x86

9d6bdd43fbc47fffffa967a45b8c6d78

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

convertercore

?ItemExists@TranscoderModel@@ABE_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z

Sections

Size: 829KB - Virtual size: 3.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 65KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 6.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

iuvxldpg
Size: 3.3MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wimcxrjz
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE