13da1ea004efe3af75113c29b1de6d3a63d86e9f54c4a4e422e2a509099aaade[.]exe | Triage

Sharing

General

Target

13da1ea004efe3af75113c29b1de6d3a63d86e9f54c4a4e422e2a509099aaade.exe
Size

2.9MB
MD5

117d5bc15e223805f55b2890713cd193
SHA1

a01bcb2fbea608834b0d644bc7cdcd9d304eca5b
SHA256

13da1ea004efe3af75113c29b1de6d3a63d86e9f54c4a4e422e2a509099aaade
SHA512

f9d2668b08702dc76d4e7aa52938b3765a13bb4b71413ff3d328b5675bfc8cfd92b25dee4db68df84037410ae2d32f431921628d3238186bdbe2f41e6d36523d
SSDEEP

49152:7PIOh+mCXpv9KjHkwJIaImhEFm49THMCOV5V8yjODNO:7f0pvSE8IaIUEFkC65Vb6D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13da1ea004efe3af75113c29b1de6d3a63d86e9f54c4a4e422e2a509099aaade.exe

Files

13da1ea004efe3af75113c29b1de6d3a63d86e9f54c4a4e422e2a509099aaade.exe
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 183KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 836B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

tmqdcihk
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

eldwlqri
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE