14f68a7f9957ea2bb5c3b94a23939d17 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

14f68a7f9957ea2bb5c3b94a23939d17
Size

91KB
MD5

14f68a7f9957ea2bb5c3b94a23939d17
SHA1

dafce3a82bb835ff9787a68d74ef97f071d687c5
SHA256

c18fed4f9b768a9f24c033b18acf60bc39dba305a1ac19b835cc01e86acc5e79
SHA512

caddb5c37b9e4bbc44f7602c89af1bbccdc89e0643ac4c5b7f829832ce164f8d844fd6210e273082be4560f1398fd82a4e4a01bd77f6d7fdf92fdb8461479362
SSDEEP

1536:BAevzRgYQWBiFvx0HMMCcvgJOiUNv/cfCbVjnTzE8FbfYONnTt1vD/:BAGFgQBiWPfgJpWB51nTXL/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14f68a7f9957ea2bb5c3b94a23939d17

Files

14f68a7f9957ea2bb5c3b94a23939d17
.exe windows:4 windows x86 arch:x86

838d8101b232359a304568ba34ff7b91

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
IsBadReadPtr
LoadLibraryA
GetProcAddress

user32

GetMessageA
DispatchMessageA
TranslateMessage
wsprintfA

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 330B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ