5454cad2a832101cb4d984e2a332cf9857d4e64e9305c0f886f81c3cd7c37022 | Triage

Sharing

General

Target

5454cad2a832101cb4d984e2a332cf9857d4e64e9305c0f886f81c3cd7c37022
Size

604KB
MD5

76ed9cff5f8c5a8ee03893bddaaabbe2
SHA1

6266677ce9c1399db4960f1d17dea65a41aeb307
SHA256

5454cad2a832101cb4d984e2a332cf9857d4e64e9305c0f886f81c3cd7c37022
SHA512

d2b11c6976196ac8433ce1737d9983fd86d81beec383197d60f00802eb82ac7ecb0cd9f9a8ad06d6867d28f2ff8674bbf4335b8902d48e090609dce49f4ccbcc
SSDEEP

12288:y2h9dv9aA+2HjnByD+ZuAfShle1lUuZx1CG+wYfk7J1E8B4ivZYstgbVKljAWOw3:FX9aAfDnBw+sA4uZr1+1ArE8B/RYsaJI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/PW68YarHboeikgM.exe

Files

5454cad2a832101cb4d984e2a332cf9857d4e64e9305c0f886f81c3cd7c37022
.rar
PW68YarHboeikgM.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

kts.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 612KB - Virtual size: 612KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ