5e218362959908ce588c9d37b57c81b0b4ae7fbbdf8e6743a9467fecb625fea5 | Triage

Sharing

General

Target

5e218362959908ce588c9d37b57c81b0b4ae7fbbdf8e6743a9467fecb625fea5
Size

1.7MB
MD5

5ade9ab7fda1137b2ba6692ca6d740d6
SHA1

9c928743de51a513a3a186d7a971894e2dbfc275
SHA256

5e218362959908ce588c9d37b57c81b0b4ae7fbbdf8e6743a9467fecb625fea5
SHA512

cbdb56fb674a6883fa757a10f3b72cc096b3ba301fd22ab7e35230b92792ed898cbfb33a532b6fbd192e73743d2e5b511c2d2107cdc7a56c7316c463dea970ce
SSDEEP

49152:4yjkonv8rnXbtK+LmYhnZssqkZwe696g9JRxTJZ:3fvsXnLmYhn8B9F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5e218362959908ce588c9d37b57c81b0b4ae7fbbdf8e6743a9467fecb625fea5

Files

5e218362959908ce588c9d37b57c81b0b4ae7fbbdf8e6743a9467fecb625fea5
.exe windows:5 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 90KB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 788B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lsajjaxj
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bkfqnhpd
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE