90b5d299c1dbd9f26208113c544e07db | Triage

Sharing

Copy URL Twitter E-mail

General

Target

90b5d299c1dbd9f26208113c544e07db
Size

124KB
MD5

90b5d299c1dbd9f26208113c544e07db
SHA1

b7ddcdd35da2d055fdd62027e1909a3a1f12e51e
SHA256

6570892831e87153f2d907cafcc6d9db7b80487bb9b3f911471876986915e9d0
SHA512

65514235c03c10760bb669206ff31f219a1e7a58383e76168186385d6af15061552cd20483bf4412fd388a502dd09c3494da6f5af933abf0f11b78b22fbe717e
SSDEEP

3072:mwZFBG7Gt5LQpL17tCAZbpQvKgMYbKXonpG:msFY7c5LuBUKbGw/SpG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
90b5d299c1dbd9f26208113c544e07db

Files

90b5d299c1dbd9f26208113c544e07db
.exe windows:4 windows x86 arch:x86

a7ca36aefde49259784672acc7d27a4d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

Sections

.rsrc
Size: 3KB - Virtual size: 152KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

coderpub
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lol 0
Size: - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.lol 1
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE