4202e76f11d9a2d2548b12554e923248ff2dce805dbdd1629fedcbe0958e56e7[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4202e76f11d9a2d2548b12554e923248ff2dce805dbdd1629fedcbe0958e56e7.exe
Size

1.8MB
MD5

d1be41243e152a7edf6828ff569ad2da
SHA1

a610a8e4377c598529f9bee950f228db1428daaa
SHA256

4202e76f11d9a2d2548b12554e923248ff2dce805dbdd1629fedcbe0958e56e7
SHA512

07db0958ff8b6beae8c284842cd4962af9f5dd59a6500ea3f4b79f7bbe7e24f885c26fb7f693e4fad38fa56112b88d34e0e004605e3f6da49085ae22c2305a08
SSDEEP

49152:O6koCSTerq45XWfYSHF1wfxIi2T1lQoQD4Tl:O1oCd+0GQSlufP2TPQD4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4202e76f11d9a2d2548b12554e923248ff2dce805dbdd1629fedcbe0958e56e7.exe

Files

4202e76f11d9a2d2548b12554e923248ff2dce805dbdd1629fedcbe0958e56e7.exe
.exe windows:5 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 138KB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jeheyvkr
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

izqgjbyw
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE