aeea3f12848da33ea83ddd642df58e0af93b3def5674ef1f32d9ca597f5bfba5 | Triage

Sharing

General

Target

aeea3f12848da33ea83ddd642df58e0af93b3def5674ef1f32d9ca597f5bfba5
Size

3.1MB
MD5

c4b7be4be515c3c9556446438fe19dfa
SHA1

abea51afd88027739740afcbfd9ba48bfd561354
SHA256

aeea3f12848da33ea83ddd642df58e0af93b3def5674ef1f32d9ca597f5bfba5
SHA512

48eb972e4c941cd1f80b6b30effa9f1a764b58ee0c3f53c2b884e69f57bb6e971b4e77871be931d6e606c03d29c3b8e1a19042ef9cece4d7f04e5007f489f613
SSDEEP

49152:B776LzimY0uBQwHexeVK+Cl6mizDJNyKVFBQ79LHQ/LF5:B776XimY0uBQw+uK+C8t3rC5LuL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aeea3f12848da33ea83ddd642df58e0af93b3def5674ef1f32d9ca597f5bfba5

Files

aeea3f12848da33ea83ddd642df58e0af93b3def5674ef1f32d9ca597f5bfba5
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 416KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jzoqgmro
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lgnohktv
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE