6b5a13902f13d78d16df913593ed995b523c820ff03a581e0b9c6933baf761af | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6b5a13902f13d78d16df913593ed995b523c820ff03a581e0b9c6933baf761af
Size

530KB
MD5

7dfca5a70f81b9f1aa4db29b684f4085
SHA1

a42514c4cd149777f49f80d7bb96ce9bdf694ba4
SHA256

6b5a13902f13d78d16df913593ed995b523c820ff03a581e0b9c6933baf761af
SHA512

6c326a4960424c02c8a63ac981f7843ed524504ea887a61acdfb864422d4a783eb8706b270785b4770629537baa703c77f05dbc071c8730244310a5d3371e154
SSDEEP

12288:z3XdJQTN8NQ8BhX/VpYIIz0szZDqc9m7A7euoFHNh4:z3gTN8+uVsZasCftu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6b5a13902f13d78d16df913593ed995b523c820ff03a581e0b9c6933baf761af

Files

6b5a13902f13d78d16df913593ed995b523c820ff03a581e0b9c6933baf761af
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.itext
Size: 12KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 992.0MB

.iveuux
Size: 506KB - Virtual size: 508KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ