c06ba0d326260550bb09adc8b39d4e24d9b5ea57a07e929569761b3d6abe5651 | Triage

Sharing

General

Target

c06ba0d326260550bb09adc8b39d4e24d9b5ea57a07e929569761b3d6abe5651
Size

1.8MB
MD5

73e029b0ac20e746b2525941a9320a51
SHA1

860dd5c4a89249438bafc1db051a15280ba04b89
SHA256

c06ba0d326260550bb09adc8b39d4e24d9b5ea57a07e929569761b3d6abe5651
SHA512

7ff5e0c1c7eb31595560328a7854a9edd14e2ed8822e9268afd609ec18b27be2601ad212063f3933ac16d31d1b4565d8ee8f94b0fd96ecc4c04c76f4cde49782
SSDEEP

49152:phA69qvzymOjXKfvtV1lH0I6+HM+myteF2MTo9biAkU:HvYzyZjaNp02M+mI2o9E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c06ba0d326260550bb09adc8b39d4e24d9b5ea57a07e929569761b3d6abe5651

Files

c06ba0d326260550bb09adc8b39d4e24d9b5ea57a07e929569761b3d6abe5651
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 183KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 836B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

skycqwlo
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ipabrath
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE