81f74729d5804f8d12d6b03e9857f8598a2658f4affaf7179c17d183d11dcf7d | Triage

Sharing

General

Target

81f74729d5804f8d12d6b03e9857f8598a2658f4affaf7179c17d183d11dcf7d
Size

3.1MB
MD5

14553f6293d5ac46e487d9b6fe10fc43
SHA1

f5bb90e1d2663c95e495221e6cc1b718e99d83fe
SHA256

81f74729d5804f8d12d6b03e9857f8598a2658f4affaf7179c17d183d11dcf7d
SHA512

2508a9401a830f0ed926deaed884e69b6455e4f69364fbc1e519f00d7047311da58fd5953085309098118a3491ef598129680c4098ee7f10c9466167db5a12f5
SSDEEP

49152:KhauXReFpfdgre/8fKPuMedWjZ6cHantt5LidUfc7ybP1:weFp2reEfuuMEWjZ6c6ntXiF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
81f74729d5804f8d12d6b03e9857f8598a2658f4affaf7179c17d183d11dcf7d

Files

81f74729d5804f8d12d6b03e9857f8598a2658f4affaf7179c17d183d11dcf7d
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 384KB - Virtual size: 384KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 764B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mcxrghen
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wydyfjzc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE