5c958b909322909c2b94e3983ff2dd40a8edf06a4789dfb28e1271b961fad4f3N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5c958b909322909c2b94e3983ff2dd40a8edf06a4789dfb28e1271b961fad4f3N
Size

13KB
MD5

0900367e660f87642c17360d257bc550
SHA1

b966c0d26c2426c1d51c7c1167b567a973d23834
SHA256

5c958b909322909c2b94e3983ff2dd40a8edf06a4789dfb28e1271b961fad4f3
SHA512

d11236ce285f2907295818205de1b7b2c8220f813ef370cfe9776c2f9f361bb06f58c9a53de6e0cde123fcfd08b3dfb681b20012a0062f13d32e7aba426ed866
SSDEEP

384:WEF4ofAfjDPP1gGper6/5zFA8ghrPLuh28HupM7M:WELfAfjDu2/E8ghTBR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c958b909322909c2b94e3983ff2dd40a8edf06a4789dfb28e1271b961fad4f3N

Files

5c958b909322909c2b94e3983ff2dd40a8edf06a4789dfb28e1271b961fad4f3N
.exe windows:5 windows x64 arch:x64

13b6781b251e80b616de3fdc2cc2b478

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

ws2_32

send

msvcr100

atoi

Sections

.EMXTAD1
Size: 11KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.YVZOMZ2
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE