2208cfad648668c42c8b7083ebc955e332bb397b710943be033290bdf4ef5dff | Triage

Sharing

General

Target

2208cfad648668c42c8b7083ebc955e332bb397b710943be033290bdf4ef5dff
Size

3.0MB
MD5

7d6322b6c1b7c75ded37c3e5999d32c1
SHA1

37f4899b2d031cc0e8adc684d683beba5102846d
SHA256

2208cfad648668c42c8b7083ebc955e332bb397b710943be033290bdf4ef5dff
SHA512

f4695b18146292cfd1bab8a6fdfd7686c48c508b38e69beceb05fb0ed9e472e5e79ee928ac7f40cf0aac73795e5257fefebf8c8211af08f39f41d33cc41ae244
SSDEEP

49152:U1cQKqNpfdRuHNWW5lh3+ouOc//URhK+7kr0yRTgFSKuJuKRX:SKqDfdRfW5lxnNc//URhBaMFSxJFF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2208cfad648668c42c8b7083ebc955e332bb397b710943be033290bdf4ef5dff

Files

2208cfad648668c42c8b7083ebc955e332bb397b710943be033290bdf4ef5dff
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 344KB - Virtual size: 344KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fmqkvqjt
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fxoirlpd
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE