06747d55a9ce60a544840b3b2b25ee47 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

06747d55a9ce60a544840b3b2b25ee47
Size

56KB
MD5

06747d55a9ce60a544840b3b2b25ee47
SHA1

5d08d246d78c9e71f6a6e5d5fd1e06bac01db633
SHA256

8f3e929e12ac10a8224994d7f62c09999d1d55f06c890eafdea81e1d8bd72d1a
SHA512

ad49d221bae8fb0ca31ec6215dc7b5527790ccdd779023c37a912d0d2b0fdc50669273976fc96b52235560c99dea97f075ec91b9cedc43640e356366b8b67160
SSDEEP

1536:JaRo56LIKEglFBSquE7Rs/SndQq0cJPQgLFyB:nm9XhSquaOSndQqJPQccB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
06747d55a9ce60a544840b3b2b25ee47

Files

06747d55a9ce60a544840b3b2b25ee47
.exe windows:4 windows x86 arch:x86

20358045d70e88709f1b06696b589d33

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalCompact
SetEndOfFile
lstrcmp
IsBadCodePtr
ConvertDefaultLocale
SetLocalPrimaryComputerNameA
WriteProfileStringA
RegisterConsoleOS2
ReadConsoleOutputA
WTSGetActiveConsoleSessionId
VirtualQueryEx

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE