39f9de366b606d8f711b6f37d5bd0412 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

39f9de366b606d8f711b6f37d5bd0412
Size

22KB
MD5

39f9de366b606d8f711b6f37d5bd0412
SHA1

0c8bd7d1d8a73ffcdac6788bdec0d7751e2cbda2
SHA256

02d6c1c992d9566b3c72f650ef56ebfe2d3063f1388f39db33cb49755a7ab31d
SHA512

0e49f1f027426455b1479f60b6bd0103715f4995704566a6409224800beb4bbf064864020e6545914e96e1c0b5139186860655034af4960af67b0e6708bdae29
SSDEEP

384:rYeR0WKMnnIpkEmJX9vvS5FapL3RwYCh2zuBCLOTBBl+PhMYFMNEupOmT2AF2:UeRwMniktVBS5FapdYgzpONMhVuEup/B

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39f9de366b606d8f711b6f37d5bd0412

Files

39f9de366b606d8f711b6f37d5bd0412
.exe windows:4 windows x86 arch:x86

f70e1c2c247576de0ab85ae3dc8c9391

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
GetModuleFileNameA
LoadLibraryA
ReadFile
CloseHandle

user32

CharLowerA

Sections

.text
Size: 1024B - Virtual size: 706B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 242B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 484B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ