246c133758a765ad56976c67dafda56f5f42305a2295861bc8e50746b57b3c65 | Triage

Sharing

General

Target

246c133758a765ad56976c67dafda56f5f42305a2295861bc8e50746b57b3c65
Size

3.1MB
MD5

4904c155d5f8e4fd73acb30e5f20c2a3
SHA1

c261298671a512f1405fa87824709e87517977c6
SHA256

246c133758a765ad56976c67dafda56f5f42305a2295861bc8e50746b57b3c65
SHA512

aa475c800c0b6077204c3781666931d800f7fe939b92cd890c4b9cdb542a9dc25bbd15ce892bd34199d1e821b851df2a45e16312e9c499e19c42d2f45692d8b0
SSDEEP

98304:+Yw8z0IM/d9EkgYBiPmKwpU73CebjMyXt:zlm2mKEebjMW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
246c133758a765ad56976c67dafda56f5f42305a2295861bc8e50746b57b3c65

Files

246c133758a765ad56976c67dafda56f5f42305a2295861bc8e50746b57b3c65
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 416KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hfytmshw
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ujcivyyc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE