a6d282cc9730f877e84feeccb6dd838bb2bbaee8094360f5a22a712e5d8e12df | Triage

Sharing

General

Target

a6d282cc9730f877e84feeccb6dd838bb2bbaee8094360f5a22a712e5d8e12df
Size

1.8MB
MD5

86fb61341afee028b86b602f00ba401b
SHA1

517a1dc9d1e03ca5c7528a094a26a94e2ae6e9a7
SHA256

a6d282cc9730f877e84feeccb6dd838bb2bbaee8094360f5a22a712e5d8e12df
SHA512

9cb3e3778f4d6158629cb9437b3f345df7da64814a3bc0713874d2694e639e74b0da801116117b6cf19ef469dd91186b277101c0792f8658b6dc8403f28d20f0
SSDEEP

24576:fv77Wf99gYBp08zgeYSoa2DRB4rSA2h2jHqbOyEOilJCzz8sS23AWeYvmSMqRAUh:fy/08zp2NpA5G0fGc23UAdjVjn3fT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a6d282cc9730f877e84feeccb6dd838bb2bbaee8094360f5a22a712e5d8e12df

Files

a6d282cc9730f877e84feeccb6dd838bb2bbaee8094360f5a22a712e5d8e12df
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 183KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mnehwkcl
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qltxdkau
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE