d12207e5d2e2668de9c381a14a35a6199a0d6c50cbed1164340ac61bb1eb85d2 | Triage

Sharing

General

Target

d12207e5d2e2668de9c381a14a35a6199a0d6c50cbed1164340ac61bb1eb85d2
Size

2.8MB
MD5

bb44422919d44c41ba392b6fad35f9e3
SHA1

0a9332cd23a8cfa6092709bc133d7052d2d43c05
SHA256

d12207e5d2e2668de9c381a14a35a6199a0d6c50cbed1164340ac61bb1eb85d2
SHA512

2ce8ab147380afd27a12f2f9f325566751ed208ef0529cd6d6a45634914dedf6f1ca2fd4cde579a30ec667873a60909f0540615e37da2c274afc40a02a914d07
SSDEEP

49152:U3A4Bxe3BgfE367T1Jc77X9h7tAUYxnUzGZe9f/p+n:WA4Bxe3Bgf66X1JcFh7hYxn2ue9Qn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d12207e5d2e2668de9c381a14a35a6199a0d6c50cbed1164340ac61bb1eb85d2

Files

d12207e5d2e2668de9c381a14a35a6199a0d6c50cbed1164340ac61bb1eb85d2
.exe windows:5 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 90KB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

suhxfrja
Size: 2.6MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

cxxchbsu
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE