49cf189e680de4eac4e63b3fa6477b8c6e4388c1ff20a93798543d97a067238d | Triage

Sharing

General

Target

49cf189e680de4eac4e63b3fa6477b8c6e4388c1ff20a93798543d97a067238d
Size

11.1MB
MD5

c7752868741a752926d4615a6fab3dac
SHA1

02faa0f72913e2446d086a834b04a3d71ae78630
SHA256

49cf189e680de4eac4e63b3fa6477b8c6e4388c1ff20a93798543d97a067238d
SHA512

4706e8555935b0d408fedece16ec1d4d38437549c37b6ee3a4e70a3db34df3f7c0cf7eb65bf9545ee1a798eeaadbb4034b11a00608fb05e3970895ce9d5c32a4
SSDEEP

98304:yb+0ChEPIGiq3y3vx+w9TbfjJ+kdfpK46Tle36jknz9Y:Y+kIGv3y/x+KTbfjJ+kdnAlejY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49cf189e680de4eac4e63b3fa6477b8c6e4388c1ff20a93798543d97a067238d

Files

49cf189e680de4eac4e63b3fa6477b8c6e4388c1ff20a93798543d97a067238d
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.Upack
Size: - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE