9cc4da677496186882233489f8936954a38f832bd4e327956450592dd4b8ff7f[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9cc4da677496186882233489f8936954a38f832bd4e327956450592dd4b8ff7f.exe
Size

1.8MB
MD5

ad36da014bb780de5a185a7ffa0b57e8
SHA1

3f1fbd5438d67707527a46df2c8cbe99a3f96a9f
SHA256

9cc4da677496186882233489f8936954a38f832bd4e327956450592dd4b8ff7f
SHA512

eb64972af7d9fc058d13babcca27b12e2f67694fb4eaf09a6d7d80fab9b0f5bf0f6d3d2d1c9913a072dca3a3764277fa1664ae43441b407ca621b9babaf878e1
SSDEEP

49152:SbKskjWBZfmMBRrt2VmmHjIgmZt/bEBSJKJ:WmyBZ+MfOmbgmXbEBFJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9cc4da677496186882233489f8936954a38f832bd4e327956450592dd4b8ff7f.exe

Files

9cc4da677496186882233489f8936954a38f832bd4e327956450592dd4b8ff7f.exe
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 151KB - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xvakscga
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

cqtmysnv
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE