452b6e37285ad1183a56d857ffeab8c0_exe32[.]exe | Triage

Sharing

General

Target

452b6e37285ad1183a56d857ffeab8c0_exe32.exe
Size

66KB
MD5

452b6e37285ad1183a56d857ffeab8c0
SHA1

75b3bcda7395cb919e842c895eff3c92de5d91cb
SHA256

75f584869bcb00ae34266a2fabe4863ad35b14c171998c068e86afb1205a6d87
SHA512

0916507848b66f2e90e6ac27a2a4fd7e4c328702df2573464ff9077850990972197d278843738973518586bd667b883027ff6a88637b79cac820a89ee0bc819e
SSDEEP

1536:e9tmec/IWYUB8P0v6H4FPrp3i8EiUIE8DuzMgrZ1d9su:LgWYUBdC0Prc8o6DOMe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
452b6e37285ad1183a56d857ffeab8c0_exe32.exe

Files

452b6e37285ad1183a56d857ffeab8c0_exe32.exe
.exe windows:4 windows x86

7251ac9b48edaa0a9483cd4331b3b5a7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetMaximumProcessorCount
SetFileValidData
GetProcAddress
AppPolicyGetProcessTerminationMethod
CreateMutexExA
BuildCommDCBA
RegNotifyChangeKeyValue
BasepGetAppCompatData
InterlockedPushListSList
BaseFlushAppcompatCacheWorker

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 51KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE