0f06f8ec1393f3be608c2872f3e861b2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0f06f8ec1393f3be608c2872f3e861b2
Size

124KB
MD5

0f06f8ec1393f3be608c2872f3e861b2
SHA1

234d0b73e86533d3e9a98ea8d8d676000d066b65
SHA256

d48dfc3e39e9f61747468b9a10821cbdf629c02058cf51b955d3b3cbba8300a9
SHA512

facd923446433bae41c6ae9d92dee021177d47a4728f6f75b9c10e2ca9cb59968fc12010cbd4aaf05c6ef3f0cd89a932c8be8631338df0047012c77f8cba0a42
SSDEEP

3072:rXq8SLI03KhytrTtlYw8bInU2VxUga+i:e8SLh1rTgrUnb9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f06f8ec1393f3be608c2872f3e861b2

Files

0f06f8ec1393f3be608c2872f3e861b2
.exe windows:4 windows x86 arch:x86

dfcd761cfb2d561eb82f1a06d6b02f1c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteTimerQueueEx
FindFirstFileA
GetThreadTimes
lstrcmpiA
DebugBreak
GetHandleInformation
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

rc60
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rc61
Size: - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rc62
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 4KB - Virtual size: 660B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rc63
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ