a15fce12a08432606c810866fb8aa0b13731f32b3410b02b3b944dc06f1f08dc | Triage

Sharing

General

Target

a15fce12a08432606c810866fb8aa0b13731f32b3410b02b3b944dc06f1f08dc
Size

3.1MB
MD5

9cc497f013c9bcd51e290c241c08d3b2
SHA1

f4e3a229714e498d1d870b47d5ff203981369236
SHA256

a15fce12a08432606c810866fb8aa0b13731f32b3410b02b3b944dc06f1f08dc
SHA512

4f08daa12d5c0249d818ae0f38a99a97b011b0f41271bd927597b3f85b6b1bceb21c90196165ad63b247f2645d5c6a255a4604f5a0556b6a0e2d2f1012cffe70
SSDEEP

49152:wwgtxZgX70sjEtQ93g7zhvuZt/DNvd2iaNKZcTKLCffU:wwgCX70UEe9w3hvuZt/Z0itOMafU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a15fce12a08432606c810866fb8aa0b13731f32b3410b02b3b944dc06f1f08dc

Files

a15fce12a08432606c810866fb8aa0b13731f32b3410b02b3b944dc06f1f08dc
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 416KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ycktjssq
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xvasrpnc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE