edc5bfc854f8fbc452948c711db746e1a598e3d69755288067b73875fbd05cb0 | Triage

Sharing

General

Target

edc5bfc854f8fbc452948c711db746e1a598e3d69755288067b73875fbd05cb0
Size

1.7MB
MD5

e4de80be92bbfedd1b27c714365a19cb
SHA1

ed0a4f2a0b636264e1875668eca2b6f53f4ccb1a
SHA256

edc5bfc854f8fbc452948c711db746e1a598e3d69755288067b73875fbd05cb0
SHA512

da041c5da520eea9fbdb54ff975100468bf0b0874ab09004dbda7034bd4b358589263f6a31e1a9fd95cd43068d617c4963bc6b77e3e4f206728a9e5c7aa4f13b
SSDEEP

24576:TUbemyTmz59gspt8hTrr6GfMzASuG9omszHHW9tP2tVMe7h6e7oMVgXU:ju59gsptGpfM0HIszHW9leIe7ZuXU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
edc5bfc854f8fbc452948c711db746e1a598e3d69755288067b73875fbd05cb0

Files

edc5bfc854f8fbc452948c711db746e1a598e3d69755288067b73875fbd05cb0
.exe windows:4 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

lstrcpy

Sections

Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

palwsyzw
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

czresdxh
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE