c4a68f60a470e7a8a91d2a23d50ffb492ec5119a3311d5c3bae7f9faca5bdc0c | Triage

Sharing

General

Target

c4a68f60a470e7a8a91d2a23d50ffb492ec5119a3311d5c3bae7f9faca5bdc0c
Size

726.8MB
MD5

90b6157f3d232a14136bd4b1cf6d226e
SHA1

204d63255a5addfad3afbc0a9d82a80cd05d716a
SHA256

c4a68f60a470e7a8a91d2a23d50ffb492ec5119a3311d5c3bae7f9faca5bdc0c
SHA512

642e5acf719f64b59b795edcf34ec9aecce9de12908bfdd8c6b356d1d793db203a19a02b51f7d9183d36a7fecffa0b01d164f2610d967be24ea85ca1e795133e
SSDEEP

196608:jYmgaJptScC8HFvdacoNIEJrwHCf3cHx5:jgaTvda3WRQ3cL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c4a68f60a470e7a8a91d2a23d50ffb492ec5119a3311d5c3bae7f9faca5bdc0c

Files

c4a68f60a470e7a8a91d2a23d50ffb492ec5119a3311d5c3bae7f9faca5bdc0c
.exe windows:5 windows x86 arch:x86

9f95eae0e562cdd8c0f94b7ddd3234c1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAllocExNuma
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

ole32

CoCreateInstance

oleaut32

VariantInit

user32

CharUpperBuffW

Sections

.text
Size: - Virtual size: 247KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.] 2
Size: - Virtual size: 3.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.m8X
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.#SN
Size: 6.4MB - Virtual size: 6.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 412KB - Virtual size: 411KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ