24a8d0f6fe41ef605c82fd94bd8f3ff0660dbf4c55f161860a25de38e668fa9fN | Triage

Sharing

Copy URL Twitter E-mail

General

Target

24a8d0f6fe41ef605c82fd94bd8f3ff0660dbf4c55f161860a25de38e668fa9fN
Size

8KB
MD5

bb35679ba80a6e163238583f726013b0
SHA1

b0329928e5d7de7d126337444d2158b06fb02fb9
SHA256

24a8d0f6fe41ef605c82fd94bd8f3ff0660dbf4c55f161860a25de38e668fa9f
SHA512

0b0266706c1b3b9b4d7fe5170b47cff3a9e470ac7e3535787cbb8c8000f259231ecf8dacf63ece40001bb1ad5bbbcf7ed23ebb2c3285a6709da527d0abc2bd9b
SSDEEP

48:is01YFQBQuir2vx0UyQ02GOT/Y2ivkuzBXECKQSfrYB:01LSub0Ux02GOThivkCECJSzY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24a8d0f6fe41ef605c82fd94bd8f3ff0660dbf4c55f161860a25de38e668fa9fN

Files

24a8d0f6fe41ef605c82fd94bd8f3ff0660dbf4c55f161860a25de38e668fa9fN
.exe windows:4 windows x64 arch:x64

b4c6fff030479aa3b12625be67bf4914

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

VirtualAlloc
ExitProcess

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ppux
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE