39a1e951c0f6ea8c2457bd5bca49bc075e98648bca8d111e7e30df8701aa5a8f[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

39a1e951c0f6ea8c2457bd5bca49bc075e98648bca8d111e7e30df8701aa5a8f.exe
Size

1.8MB
MD5

08438b6eeed4f5ca2e0ef6fa7b9f38ea
SHA1

a93a5105d214f6718871be6ff9e339e99a6bbf82
SHA256

39a1e951c0f6ea8c2457bd5bca49bc075e98648bca8d111e7e30df8701aa5a8f
SHA512

28a80897bee12562c01c38d77b4d6b09ca8457056992699222afa97d8cf44d4ac2fea67408c238c7cfe11951dfba3948d2f5f7a5e3e1e000f2b1dddf0d29d993
SSDEEP

49152:rOs/xQmGgAcafOnd7K39HpLfCrEuGGsl5:rOLWafOdeNaEeu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39a1e951c0f6ea8c2457bd5bca49bc075e98648bca8d111e7e30df8701aa5a8f.exe

Files

39a1e951c0f6ea8c2457bd5bca49bc075e98648bca8d111e7e30df8701aa5a8f.exe
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 151KB - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lsxpboyx
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bmidmrfz
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE