b1f078cdd7dfe870e5fbef26a0ef96986d74900e44fe657293a9c0b329abb962[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b1f078cdd7dfe870e5fbef26a0ef96986d74900e44fe657293a9c0b329abb962.exe
Size

2.9MB
MD5

ea3cb6e41c8d015105b73ba32103a6a5
SHA1

dd482a54b7888f694e8afda90aba11d85ce67637
SHA256

b1f078cdd7dfe870e5fbef26a0ef96986d74900e44fe657293a9c0b329abb962
SHA512

615367cc6d461663d0f02679ab2259af22104f1d77b5d6c858074fb1a5e9380265587582f49f984e5bdbf9a09a3c1ea31a319ed21013ec353325dc7ce5038636
SSDEEP

49152:7cRyjOLg4P4+RCtVyLHX7I2S6tWGibXlbiTfVkKkk5tnFKFoO+FJI:Uy2g4P4+RCWL37I2SNX7luTfNN5tF6oO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b1f078cdd7dfe870e5fbef26a0ef96986d74900e44fe657293a9c0b329abb962.exe

Files

b1f078cdd7dfe870e5fbef26a0ef96986d74900e44fe657293a9c0b329abb962.exe
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 151KB - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vuqaksgb
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pfcgyuxl
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE