54fceab06ef525a834dc7447632efdf17b7c6aed145613a63a6c908a734ef6ee | Triage

Sharing

General

Target

54fceab06ef525a834dc7447632efdf17b7c6aed145613a63a6c908a734ef6ee
Size

2.6MB
MD5

bf755089fb1c4d3a9ce5aaf589462a4d
SHA1

778a6bacd435089b45f1710daf59cd4b8b851e3e
SHA256

54fceab06ef525a834dc7447632efdf17b7c6aed145613a63a6c908a734ef6ee
SHA512

2635116df23ff37a3c42a0ea565d18f53717dc19048be87427677ca04cd0e47ae0f18d1fd7e511d2ebe6c6e7849a2dfa94c0e65e8e24054bb8378d6d6128a639
SSDEEP

49152:XEvhoszTtetim993r4Y6CMZHFY8rxgudGv5f:XEvhzeYm993r4Y6ZlY8rBGv5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
54fceab06ef525a834dc7447632efdf17b7c6aed145613a63a6c908a734ef6ee

Files

54fceab06ef525a834dc7447632efdf17b7c6aed145613a63a6c908a734ef6ee
.exe windows:4 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

lstrcpy

Sections

Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

tzgkcxrd
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hvyovgqg
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE