b471d83544480a8ce96646e0f4bc4d4ad483ccf2eb2b93e7f16eca4906c28139 | Triage

Sharing

General

Target

b471d83544480a8ce96646e0f4bc4d4ad483ccf2eb2b93e7f16eca4906c28139
Size

3.1MB
MD5

54c9ea8ac7622aff4d850cf022a22a1d
SHA1

1de3718ae7e13ea6ecacb896fddb243fd231d26a
SHA256

b471d83544480a8ce96646e0f4bc4d4ad483ccf2eb2b93e7f16eca4906c28139
SHA512

bf776b2f8bd8e5551d65d95277fb5d1316b39ed7b7feb345de1966716cfb4194261900d7adb02b2958539164469ac6eb19f10d61bd8c0a7af3da2eb7127caf01
SSDEEP

49152:WCT6txMtB7zQj79mS2wU2xRClLzoWbNsLVJAY:WC2t0sj79mS2wUuRCpI5+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b471d83544480a8ce96646e0f4bc4d4ad483ccf2eb2b93e7f16eca4906c28139

Files

b471d83544480a8ce96646e0f4bc4d4ad483ccf2eb2b93e7f16eca4906c28139
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 416KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fsviazrw
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ompgtzip
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE