63faf049edfa51c9aaa4b8a4b53e8910_exe32[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

63faf049edfa51c9aaa4b8a4b53e8910_exe32.exe
Size

66KB
MD5

63faf049edfa51c9aaa4b8a4b53e8910
SHA1

2856d7f9389db0a86c8cf89bf548d49698d64f45
SHA256

b4aeb32c3edd2edce04cf5425b8aef3cf1aff252986658b2e3a72246027881ab
SHA512

d4b71653a0196a72539eefa63e09037e995e6957f52cfd0eb4ebd5374dba1a2214c891da6568cf3bd35d241fcb1b6ccbca43db77638c3d7435d5b9e8baf2e3aa
SSDEEP

1536:yO+QYMYbRKP5kOmQCUEE/d3CI0yVWwSf9uyIfRY7T2drG:yjURkpIdCLyVhS9TQa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
63faf049edfa51c9aaa4b8a4b53e8910_exe32.exe

Files

63faf049edfa51c9aaa4b8a4b53e8910_exe32.exe
.exe windows:4 windows x86

4f609193b7174ca368a9c304dcad61dc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDirectoryW
RaiseFailFastException
WritePrivateProfileStructA
BasepCheckWinSaferRestrictions
SetCommTimeouts
GlobalUnlock
RegCreateKeyExA
BasepReleaseAppXContext
GetVolumePathNamesForVolumeNameA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 51KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE