0569722b9c1b78873ad56d2ab036f0bb | Triage

Sharing

General

Target

0569722b9c1b78873ad56d2ab036f0bb
Size

20KB
MD5

0569722b9c1b78873ad56d2ab036f0bb
SHA1

0859b24f1ad698672b59306d74ff8276467aedff
SHA256

77f6324ac88024307080a997c85ddea1abbbabe12bb8985f72a5f6e0995d01b7
SHA512

a348d2d44de48bfa63ec00ea988367fd5325a2215b93819acc721d68b08607c65145ada6e1e651b785a15013938e4d00f5d88396ceb952508633d46ad1a4769a
SSDEEP

96:bRYldwjEJ7VNxm4wTZJH+eJDMHkDP/BCFQGkRSPujyVxh5pL91s16BKZ:bRYd7srwq/B8eRSlhha

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0569722b9c1b78873ad56d2ab036f0bb

Files

0569722b9c1b78873ad56d2ab036f0bb
.exe windows:4 windows x86 arch:x86

208bd77ce42c2f2815c3279bdb7a44d9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__set_app_type
__p__fmode
_adjust_fdiv
_controlfp
_access
__p__commode
__setusermatherr
_initterm
__getmainargs
__p__acmdln
exit
_XcptFilter
_exit
_mbschr
strtok
_mbsicmp
_mbsrchr
_mbsncpy
_pctype
_isctype
__mb_cur_max
_except_handler3

kernel32

GetStartupInfoA
GetModuleHandleA
_llseek
_lread
_lopen
_lclose
GetModuleFileNameA
LoadLibraryA
GetProcAddress
GetCurrentDirectoryA
GetSystemDirectoryA
lstrcatA
lstrcpyA

user32

wsprintfA
MessageBoxA
LoadStringA

advapi32

RegQueryValueA
RegOpenKeyA
RegCloseKey

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ