a0aac9a98da66e68dcedd48ad1d9d657c6e4107ea409745fdfa1cf4eacff9697 | Triage

Sharing

General

Target

a0aac9a98da66e68dcedd48ad1d9d657c6e4107ea409745fdfa1cf4eacff9697
Size

4.9MB
MD5

41e972777ac93aeb1727ff9cefea7fd6
SHA1

d4540eaab8030fdf99844bed4437769e12a89269
SHA256

a0aac9a98da66e68dcedd48ad1d9d657c6e4107ea409745fdfa1cf4eacff9697
SHA512

e6c262d7268c8743ad1cdd0c59e53c83854079b4019f901ac972a1531e4f78d3c897d464218655243ac15091a9e2ab320d392f0e1eef362fdc50d3dd4f24b662
SSDEEP

98304:Ig7HKSxSmAxaoG2Oc0vV69FkKYdPr7vD:P7H8q317D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a0aac9a98da66e68dcedd48ad1d9d657c6e4107ea409745fdfa1cf4eacff9697

Files

a0aac9a98da66e68dcedd48ad1d9d657c6e4107ea409745fdfa1cf4eacff9697
.exe windows:5 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

txioavuk
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ooojdsfx
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE