38e8f61179f74a4af9a419157f5cba8cfb8c2a82afa409e6c60c0a0d5a143ac5[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

38e8f61179f74a4af9a419157f5cba8cfb8c2a82afa409e6c60c0a0d5a143ac5.exe
Size

2.8MB
MD5

6d3bad951056981146f8c2cb7bf0e2a3
SHA1

e6816e4957b7a988091d875f78b634f2642e29fd
SHA256

38e8f61179f74a4af9a419157f5cba8cfb8c2a82afa409e6c60c0a0d5a143ac5
SHA512

56b5ce5a9ad77a3aa480b43a2317391a6db184077a63f5b506c73cef791ae9e688b9d6728f2b965745431fad57a35d8b89baf1040acc6e3ce0b512e7b23bfe91
SSDEEP

49152:64UKZ8U7cEsNiKgCbH1kiQLPy9wx+bKgLqxVdkBZ:sKZ8U7cEANgCbH1khLPIwx+egmFkj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38e8f61179f74a4af9a419157f5cba8cfb8c2a82afa409e6c60c0a0d5a143ac5.exe

Files

38e8f61179f74a4af9a419157f5cba8cfb8c2a82afa409e6c60c0a0d5a143ac5.exe
.exe windows:5 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 79KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qcwjyyfq
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xyyxufrd
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ