38300f513b13136da06d17928459a4a6daa64e5cc7a6ca3db1cc73e48222808d | Triage

Sharing

General

Target

38300f513b13136da06d17928459a4a6daa64e5cc7a6ca3db1cc73e48222808d
Size

4.9MB
MD5

918e4d1abf21f088a94746a2f17768ec
SHA1

a1684d7b99be71ae852a9cab4978d98506c9166b
SHA256

38300f513b13136da06d17928459a4a6daa64e5cc7a6ca3db1cc73e48222808d
SHA512

be471f8fc4aaff9349a764ce3766d979c5c706b5528d0ce8aa82f3970ede0bede292253203e720caa578cc019aea60ec5ce1acf147091f0f00aac25e6e3d682f
SSDEEP

49152:hKUB1fmtN7YQhLqSPM7xvNfhCmKRr+fBGbIfvyM:hNPmtN7YQhLqSPsxvNfh9KRafBGbsy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38300f513b13136da06d17928459a4a6daa64e5cc7a6ca3db1cc73e48222808d

Files

38300f513b13136da06d17928459a4a6daa64e5cc7a6ca3db1cc73e48222808d
.exe windows:5 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wwoisyok
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

sskyvrkh
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE