d33a4094b5c98b7ad929b9f5ca969fddbc38b6d2d6149c201c740e3f74a62cf0[.]exe | Triage

Sharing

General

Target

d33a4094b5c98b7ad929b9f5ca969fddbc38b6d2d6149c201c740e3f74a62cf0.exe
Size

2.7MB
MD5

21880e624879ce6c9806ccac99d606b2
SHA1

d33c68d8d994f0a33d0753c8f65abcb6a2c2057e
SHA256

d33a4094b5c98b7ad929b9f5ca969fddbc38b6d2d6149c201c740e3f74a62cf0
SHA512

0234fe2eed884fa705a9313ff1f987bc6c9163d72781081afa1038a30badcbcd06002c94ab329d04c9e7264afff3318505e33839df0337638ab50ac1bd222ae2
SSDEEP

24576:VgU11BLg8J7p013oZpo/K27Fsm9FO7CAhSisMf3NJmqfnIubk9UZBVBRZjzQHvt:ZBs3KZpoS27Fmh0Mf3rYu2Mb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d33a4094b5c98b7ad929b9f5ca969fddbc38b6d2d6149c201c740e3f74a62cf0.exe

Files

d33a4094b5c98b7ad929b9f5ca969fddbc38b6d2d6149c201c740e3f74a62cf0.exe
.exe windows:4 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

lstrcpy

Sections

Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vkrkugfv
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bunqjnhz
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE