13b970d06f50fc4782147b9f44f83303 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13b970d06f50fc4782147b9f44f83303
Size

74KB
MD5

13b970d06f50fc4782147b9f44f83303
SHA1

4a0d77ead932c03dbc12ef511dd211f36bd999da
SHA256

cff3ac83cd214f232c4f6505b4546cb10daa542939ef0b89bc1b0b1e06d458ac
SHA512

1712ed52d0a7a8dddbc0479cd6c171b63b7b82db62e63a9c1a95d273e64cff4a21486ee4f4d8408cecbb610e48734caa4dcf6ec2ea4666901e88043f415ea3eb
SSDEEP

1536:orzuqruqR8UUDfq8TJF6A1Yzy5kWW5eayC750oLd:wfjt8wzoceax750oR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13b970d06f50fc4782147b9f44f83303

Files

13b970d06f50fc4782147b9f44f83303
.exe windows:4 windows x86 arch:x86

827ae9e92f0226e668e5b65613328163

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetProcAddress
VirtualAlloc
VirtualFree
VirtualProtect

ws2_32

inet_addr

Sections

.Eg
Size: - Virtual size: 424KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Eg
Size: 73KB - Virtual size: 76KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE