af1e3b478f4375ae277b788f0c654dff4cde0316124347e2f4646ad7b953242e | Triage

Sharing

General

Target

af1e3b478f4375ae277b788f0c654dff4cde0316124347e2f4646ad7b953242e
Size

2.7MB
MD5

3040c573d9b282545ddc0a81681ae980
SHA1

23e4bfb72ab445c7b12ec1cfc16ca8285adadf5d
SHA256

af1e3b478f4375ae277b788f0c654dff4cde0316124347e2f4646ad7b953242e
SHA512

e683a7f6bb8c0adf317248711e47d5c5787cc899c8b541d0609151da5f22ed0ead3d8fe4d43330d56a0ef0d258a38bafc994b4f0553fcdc414849e287f8a8d5a
SSDEEP

24576:KHY9UpC9TkJ8KMvd0bmHh2wdd3r7oZqo5pg0mzsPZJRWiywzLU5FheJKOY4T8qH9:eAUkzKKd0qhT3Ipt1R6OYh4YO6+b3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af1e3b478f4375ae277b788f0c654dff4cde0316124347e2f4646ad7b953242e

Files

af1e3b478f4375ae277b788f0c654dff4cde0316124347e2f4646ad7b953242e
.exe windows:4 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

lstrcpy

Sections

Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zdpecioa
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

uacmytbp
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE