172cfcb6755ee4e76885446d177c3faf | Triage

Sharing

General

Target

172cfcb6755ee4e76885446d177c3faf
Size

2.4MB
MD5

172cfcb6755ee4e76885446d177c3faf
SHA1

007f7c99170fd991e43357de75ce2e7f1eea71b9
SHA256

47b15ab5cbe81bf59138f6c9c6802ff242ff7280bae1a8204939516e95bc4590
SHA512

2be906b01762a392b9b68e8d58b12a2006bf8f1d681841a17c5efd5778f40d9939b73b4f7bbf05589497606b96de90fc4f9a13652c8a414ed557ad309c6b0dc7
SSDEEP

49152:hZOAwDDQb+WCgP41dfD0MnyEgFPiBlv4af:hTwD0b+VgP41d70MypW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
172cfcb6755ee4e76885446d177c3faf

Files

172cfcb6755ee4e76885446d177c3faf
.exe windows:4 windows x86 arch:x86

65b6862e9898b195f4ef7a1685fd82dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

msvcrt

memset

comctl32

InitCommonControls

user32

MessageBoxA

shell32

ShellExecuteExA

ole32

CoInitialize

Sections

.
Size: 7KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 1024B - Virtual size: 700B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE