06be5f89a2d631e4c475f5d69c59eda9 | Triage

Sharing

General

Target

06be5f89a2d631e4c475f5d69c59eda9
Size

315KB
MD5

06be5f89a2d631e4c475f5d69c59eda9
SHA1

86679526a78a82f48ebae16c160ce22d3be4c1e6
SHA256

9fe4fa0117c731c460e1d7e92023e521338e31601b6994b8e97c36458bf45021
SHA512

c260b1448f828e203edde58c6f5decc7ab0064c51902b1d644b3774b046a3d5ce7057859cd82e96ad4d8a5dab243ddada2620c8e8f43d3a8a3623c6e8f0a4abe
SSDEEP

6144:yubQuwzNVG3LuGfNUg6GE6FgBclDBeOicWgXXr/oAXlyLSpdgLmzMA2KjddHi8w:jb8TGfNTVg+tycLDXlyWdg2Txs8w

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
06be5f89a2d631e4c475f5d69c59eda9

Files

06be5f89a2d631e4c475f5d69c59eda9
.exe windows:4 windows x86 arch:x86

2fbdb3337808572cebeb99d44a2fdd1b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RaiseException
GetEnvironmentStringsW
EnumSystemLocalesA

msvcrt

strncmp
_snwprintf
iswctype
_strnicmp
_stat
_wcsicmp
__getmainargs
memcpy
strcmp
_vsnwprintf
__p__commode
tolower
__mb_cur_max
_strlwr

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE