b4e612eecec74dccfff0a936d350ef6741cc0430eddf568852a449d029659b68N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b4e612eecec74dccfff0a936d350ef6741cc0430eddf568852a449d029659b68N
Size

2.2MB
MD5

e35ce57a24257ca4ddc73cd177947a40
SHA1

cb271ff412b407f7b7ea3130f812ec3676a14241
SHA256

b4e612eecec74dccfff0a936d350ef6741cc0430eddf568852a449d029659b68
SHA512

c1e689d070c173f1c76bcce7424d5baedc1cecb5999f6a4dc001775d9173a272346c402d9d7a979e5597f7362fd87384e90cc431d8f85b33a36806d72e6d93bc
SSDEEP

49152:I87ulylY7QR1VAsxMHM6YCq6d+8LK/x6wbkZibSvSj8C9rky/ydd1:I8KlylL1VnxaM6YCLd+p56wIibma80kP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b4e612eecec74dccfff0a936d350ef6741cc0430eddf568852a449d029659b68N

Files

b4e612eecec74dccfff0a936d350ef6741cc0430eddf568852a449d029659b68N
.exe windows:5 windows x86 arch:x86

b053fdb4d2863a90eb458871ca35a3ac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32 rasapi32

MultiByteToWideChar C-

Sections

.text
Size: 1.3MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 752KB - Virtual size: 752KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ