451926dc2c24b0019677b06b189f1d7fdd38deccfe7ea47f7c72e243f1e21cae | Triage

Sharing

General

Target

451926dc2c24b0019677b06b189f1d7fdd38deccfe7ea47f7c72e243f1e21cae
Size

2.0MB
MD5

263f8c88c832ba9cb27343992a861af5
SHA1

5d253e787cd38ea98abf48c6fd00cd777323ad6c
SHA256

451926dc2c24b0019677b06b189f1d7fdd38deccfe7ea47f7c72e243f1e21cae
SHA512

64b8ed3654539eda6a613a7c0c11808df9ddf2f74901f3edf0d1d28c6aa01a88b9d9207c304e9b0a52b927287a99506ec990e254fe7985ed7d6d92661cf7d287
SSDEEP

49152:YLXoRO7VqWRNjTUTz+Xx9rltxe2JpFmne6tnMe7NQdGZx81QsAhRw:PIhRZUTaJtBFijMeZQdGD9sURw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
451926dc2c24b0019677b06b189f1d7fdd38deccfe7ea47f7c72e243f1e21cae

Files

451926dc2c24b0019677b06b189f1d7fdd38deccfe7ea47f7c72e243f1e21cae
.exe windows:5 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 413KB - Virtual size: 2.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wmxcqlfn
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

tsinxjet
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE