fb5cf46f0c116844c00117da6dc66c5782d88544aaacddfff305254992254bc0[.]exe | Triage

Sharing

General

Target

fb5cf46f0c116844c00117da6dc66c5782d88544aaacddfff305254992254bc0.exe
Size

2.7MB
MD5

6b35050f1f4e5a9c377137ce1f99238b
SHA1

a561b0bc0ee6e5d0384695dee5ea34b4ef5fc2ca
SHA256

fb5cf46f0c116844c00117da6dc66c5782d88544aaacddfff305254992254bc0
SHA512

614e1522e6d338bee5ff1c917b0a06a496c49455dbbcd2cc854806490364049c931964578ba9d92ea09f6fa59d8dee5fcf0b4c25d1bc9083b5234a34ac5b5d39
SSDEEP

49152:Sb2W7EETruY4lQysvXAtxi92jLYo6EGU0kM7na/nwMN1dYDddGAedDowym:Sb2W7EETrDvys/t0/wMN1dYDbGrX7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fb5cf46f0c116844c00117da6dc66c5782d88544aaacddfff305254992254bc0.exe

Files

fb5cf46f0c116844c00117da6dc66c5782d88544aaacddfff305254992254bc0.exe
.exe windows:4 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

lstrcpy

Sections

Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nhpjgaag
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

yrlvmxgw
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE