5b665d4f8e723fb379f6df446289622956cf9f989e494044d0ea66278270df1b[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b665d4f8e723fb379f6df446289622956cf9f989e494044d0ea66278270df1b.exe
Size

1.8MB
MD5

3f1b90e6378f4795731793ed76cc52d5
SHA1

e4b50856c9a2ce27743daccd961ad732e8dc366a
SHA256

5b665d4f8e723fb379f6df446289622956cf9f989e494044d0ea66278270df1b
SHA512

fc55c600fae82a04ff6882b3f47c318b84cdd7daf036919d21c18e99e786bfc51f7804a7078aaa384e6520b058ec53b4e9f1bac6ebbb4e51cae9b0531809dffc
SSDEEP

24576:tpOHLFaOA8AZmkFzrEfa9ZMDLdd5tIhIccQYy9ER8VhTrDfBLtHN5a5ubVjTR9k8:lOfKnFpMDIhtclR8rrfBk5u5B9s+IKR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b665d4f8e723fb379f6df446289622956cf9f989e494044d0ea66278270df1b.exe

Files

5b665d4f8e723fb379f6df446289622956cf9f989e494044d0ea66278270df1b.exe
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 151KB - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

beaikccu
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

slbmrrwa
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE