c564b4946fd577315f3bfd0388f1251ca868459d2ba76fd5244368644efe1744 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c564b4946fd577315f3bfd0388f1251ca868459d2ba76fd5244368644efe1744
Size

2.6MB
MD5

74a7d6f9f880bd0cdd57b5c4b90fced1
SHA1

870e27b51681aa47e6d905b2d6f4a8897bf774fc
SHA256

c564b4946fd577315f3bfd0388f1251ca868459d2ba76fd5244368644efe1744
SHA512

8c1cf7ad87fc781c23a40a21450b9085f020e2f5f7a84f974c50a2166c9c65a6b7f76c3d48122007bc33e1eced14fb2e57ad241e7e836aeed14df05b93f780e9
SSDEEP

49152:lBHtxZ3hYOEkLSwuOdYl1NXKj7Jw9osOQxzXbP+GeTxtv41mNt9:t3bHSpoyc9w9osOQhP+H1OA5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c564b4946fd577315f3bfd0388f1251ca868459d2ba76fd5244368644efe1744

Files

c564b4946fd577315f3bfd0388f1251ca868459d2ba76fd5244368644efe1744
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 1008KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 370KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lcdjwqau
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bsabwhvo
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE