52fefcee49c9d15d584f69e0ad30494ec65e2b091c84d6568f69cb5998be77e0[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

52fefcee49c9d15d584f69e0ad30494ec65e2b091c84d6568f69cb5998be77e0.exe
Size

2.8MB
MD5

d4dffae3d678dd4d998d08f60a6bc26a
SHA1

99fd6ed8d130b941844def8b370ade275426b1dd
SHA256

52fefcee49c9d15d584f69e0ad30494ec65e2b091c84d6568f69cb5998be77e0
SHA512

435b45bd645990306f26d37904dc71f3d086e6bc944444294e52543ce3b8491a4f798898020e55e51c5701d770fb18e6bc06539efc7a94ba17215abe72030be2
SSDEEP

49152:aR2RFy+OUY48H0R8mDxwEincrs8yYz1UcZ:aoFy+O48H0RtwZ18yOn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
52fefcee49c9d15d584f69e0ad30494ec65e2b091c84d6568f69cb5998be77e0.exe

Files

52fefcee49c9d15d584f69e0ad30494ec65e2b091c84d6568f69cb5998be77e0.exe
.exe windows:5 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 79KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xmjsuggn
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bgyghbmf
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 150KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ