84c24a1ac5fc09b70f622b2c6971c6638699d9eb926745745c049e017e319b4e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

84c24a1ac5fc09b70f622b2c6971c6638699d9eb926745745c049e017e319b4e
Size

1.9MB
MD5

570a17fd8b3c0b940092bbd3c57530fc
SHA1

8f393c554f2d218b51c7ac2a831e5f078e49e950
SHA256

84c24a1ac5fc09b70f622b2c6971c6638699d9eb926745745c049e017e319b4e
SHA512

66529816e3e74389671e6b28189d8b5661bb1368509662ae76fcd740e5d6957531937d107037a88cb2cd9661ba9d48d1b32513da00eecbe3f31b4bf27c619b0f
SSDEEP

24576:GciOdJKRnqRf11uxleeTmo5BZgYSothJEblBEcFRGZYtMoJnkd3vhzhxGTsK:G0KnqpHLehByFoRcSCGoad3JGT/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
84c24a1ac5fc09b70f622b2c6971c6638699d9eb926745745c049e017e319b4e

Files

84c24a1ac5fc09b70f622b2c6971c6638699d9eb926745745c049e017e319b4e
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 183KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bcovxxcg
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zgedmtsf
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE