b3dfb40fa19b4a19759bd60766049c27161b4223ea06380e15be7b0f057cb5bb | Triage

Sharing

General

Target

b3dfb40fa19b4a19759bd60766049c27161b4223ea06380e15be7b0f057cb5bb
Size

5.0MB
MD5

8c40bb6c3c0e8a36f2eae8a4c847bb88
SHA1

540209d851c92683c093101dd2bf73b0f4c63373
SHA256

b3dfb40fa19b4a19759bd60766049c27161b4223ea06380e15be7b0f057cb5bb
SHA512

3a2ef6aa88c5f57d4540ba218d3e30ebfad8d413aae09b79fc69c75f860664a7cce4c046ebac8cd662472801ca2b1300c5f3004670b671261d125b2d502f4d93
SSDEEP

49152:/U5J1Yunor5IBvWZp0s+VRIwM5amXsno+ZrhH4jibjC:/U5w+oryBeZp0s+VRIwM4LoSp4ijC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b3dfb40fa19b4a19759bd60766049c27161b4223ea06380e15be7b0f057cb5bb

Files

b3dfb40fa19b4a19759bd60766049c27161b4223ea06380e15be7b0f057cb5bb
.exe windows:5 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

topmhhkq
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jrqiswyo
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE