284147e61bac6fc2ba06269f093c753514e844f4bc6b765703d3b902f0768b3a | Triage

Sharing

General

Target

284147e61bac6fc2ba06269f093c753514e844f4bc6b765703d3b902f0768b3a
Size

1.8MB
MD5

0bd65d719958147c36050e910765ce4d
SHA1

ebac484d5a74c02602497779aa5f698c0d6f12de
SHA256

284147e61bac6fc2ba06269f093c753514e844f4bc6b765703d3b902f0768b3a
SHA512

e2203613eda0b3b85a6267276abaec04d075bd9c3c5d49842c15bf4102788fee1d300cef847796f20156dfcd65fcbf86b495c5943d656af855a57e3885b4c61b
SSDEEP

49152:DR7mYJyM4o8oiKo0yXr/eXIikTJMTXouL+Z:DVmYgro8pKvyaYiw4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
284147e61bac6fc2ba06269f093c753514e844f4bc6b765703d3b902f0768b3a

Files

284147e61bac6fc2ba06269f093c753514e844f4bc6b765703d3b902f0768b3a
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 183KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

cpgeomfl
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

kjstwdug
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE