5c378d13c9c4361e25258365eec31c68797532a73ac2de86d52a655b276c0554 | Triage

Sharing

General

Target

5c378d13c9c4361e25258365eec31c68797532a73ac2de86d52a655b276c0554
Size

1.8MB
MD5

3099ddd6873222d4e652db0c52a63750
SHA1

599a2d8ed030925c7e015095834ce3d42edd78eb
SHA256

5c378d13c9c4361e25258365eec31c68797532a73ac2de86d52a655b276c0554
SHA512

c497351cb73c2dede38f908457f558cdcb019665ba362a5b85919a8a96f07a1cbc3347bd0d758531070076d868ae28f4ac334b258b880b6ece6c31e3b5281e9f
SSDEEP

24576:Axr4T4OnanVJGo985/R7FS75ywvgv4/GnPNn3ZItReFBNO+y7jH3SD0JDQ+NGFu9:AGtaL18wIwIv4oNuKs1biD4DiFZJwr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c378d13c9c4361e25258365eec31c68797532a73ac2de86d52a655b276c0554

Files

5c378d13c9c4361e25258365eec31c68797532a73ac2de86d52a655b276c0554
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 183KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 836B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

tbuglwtk
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

cmhyvxmc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE