05b1389457eb6624d583c98f5df1ec88 | Triage

Sharing

General

Target

05b1389457eb6624d583c98f5df1ec88
Size

144KB
MD5

05b1389457eb6624d583c98f5df1ec88
SHA1

454c20f8c4f1f933c86d9d53472d101be0931116
SHA256

5b84c26a2eb77217634745943eebb83746c51f862f7a288632bcd30ff8a96497
SHA512

0da63d70b1020b0bfae4457f10d1a4716c9a5774b11f4e1c13fbccc76328c7f16791774283da23d970f1f06bee8d9e0f21c0efb447a79ab4634f61b872bf2fd7
SSDEEP

3072:rPYh8LoQSvCAzC9du3TRTR+ImG/i3mVAbbgxv65ylj60xQf5cOt:khiQCAzqdu39TEI3i+0go5KC5b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
05b1389457eb6624d583c98f5df1ec88

Files

05b1389457eb6624d583c98f5df1ec88
.exe windows:4 windows x86 arch:x86

961940de25a3f44bea1c2b5f4c86c487

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeW
GetThreadPriority
WaitForMultipleObjects
CloseHandle
InitializeCriticalSection
LeaveCriticalSection
SetEndOfFile
Sleep
FreeEnvironmentStringsA
SetEvent
GetLocalTime
CreateSemaphoreA
GetStartupInfoA
EnumResourceNamesA
FindClose
WriteFile
EnterCriticalSection
SetFilePointer
ReadFile
ReleaseSemaphore
ExitProcess
WaitForSingleObject
DeleteCriticalSection
CreateEventA
GetSystemTimeAsFileTime
CreateThread
GetLastError
FindFirstFileW
LoadLibraryA

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 932B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ