41800124315a2e1f59b27b23de71fe6f671eb3126d8e15de684dc803549fd81e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

41800124315a2e1f59b27b23de71fe6f671eb3126d8e15de684dc803549fd81e
Size

956KB
MD5

40e9204a78826c09a42edceedbb92888
SHA1

1754f096615b128ca6d28e886f5dfd2a21f179fb
SHA256

41800124315a2e1f59b27b23de71fe6f671eb3126d8e15de684dc803549fd81e
SHA512

3de8c4c44623d968435ea66057843492164d2db764c2a778649b269798ade8a9d812462021d671bfa95366be41428c9b4448d98a22686d88ba1b1151ca8dd091
SSDEEP

24576:sTDMsk6U04xZrhVoEBhnVGeNeIRh1NS67sVsDb0:TPnZdTzVGCc67siDb0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41800124315a2e1f59b27b23de71fe6f671eb3126d8e15de684dc803549fd81e

Files

41800124315a2e1f59b27b23de71fe6f671eb3126d8e15de684dc803549fd81e
.exe windows:5 windows x86 arch:x86

e1e10e4075d00c2dbc8a8f893a781113

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

ole32

StringFromGUID2

advapi32

SetSecurityDescriptorRMControl

kernel32

GetUserDefaultLangID
GetCommandLineW

Sections

.text
Size: 954KB - Virtual size: 956KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 314B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE