ddfaedb3e84205aea19bcd921cbaeb09e963af65a6b5fef248213130e2a0f602N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ddfaedb3e84205aea19bcd921cbaeb09e963af65a6b5fef248213130e2a0f602N
Size

56KB
MD5

d856f1d850de678a415e79a5e8b1d420
SHA1

f51ed3e39bdb32598c7702f7aa4c32f738e4873f
SHA256

ddfaedb3e84205aea19bcd921cbaeb09e963af65a6b5fef248213130e2a0f602
SHA512

cab2f158e3c0e16b29f7713528bdb577515e7bfd7394fe985bb56ae29463c27d7173769842349ec21af27f098496d61269ecf28867b82dc5f93cfecb7e78a633
SSDEEP

768:mK0U4ncNncFfxRfxHKGwKG+KGnKGNKGwKG+KGnKGW2s2TLra9OIXD5c0c3QuLral:kfxRfxHAu39Au3Za9Ia9v3X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ddfaedb3e84205aea19bcd921cbaeb09e963af65a6b5fef248213130e2a0f602N

Files

ddfaedb3e84205aea19bcd921cbaeb09e963af65a6b5fef248213130e2a0f602N
.exe windows:10 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 284KB - Virtual size: 281KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.didat
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ