d94506b192d68e1a3e0330db62fd84d4c1b98597869a4f831a06e7f73708714c | Triage

Sharing

General

Target

d94506b192d68e1a3e0330db62fd84d4c1b98597869a4f831a06e7f73708714c
Size

3.1MB
MD5

ed3fa7460523c5ec9d4568e754624405
SHA1

88ad04cf36c7fe20644d48572ec2e70569c9581b
SHA256

d94506b192d68e1a3e0330db62fd84d4c1b98597869a4f831a06e7f73708714c
SHA512

4ff0b5009effb0630cb3cd5dcd7291bc645cb2d59d1975eaef2cec17f379e00317c44de5ed4b07ec607745571521fff380acbfb98afe3710e5ec2dae36bd1add
SSDEEP

49152:ktPTO+1ofLg4mtu3dBRdUMqbmIZgFv2Adk1Vf7Y5XnQ96BsohwyVw:G7O+1GLotutB/UMqyIbJf7Y5XnQmBw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d94506b192d68e1a3e0330db62fd84d4c1b98597869a4f831a06e7f73708714c

Files

d94506b192d68e1a3e0330db62fd84d4c1b98597869a4f831a06e7f73708714c
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 416KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ntvpqilp
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zzyknpgl
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE