58101b7b32606f46cbc9421f2ac17292 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

58101b7b32606f46cbc9421f2ac17292
Size

17KB
MD5

58101b7b32606f46cbc9421f2ac17292
SHA1

045e0b2e17fb1f9f384f5cb972a40eafe7bba308
SHA256

e8a64c85233ade11bcc22a52f95d37a17fe4fe536c8f14aaf4378f19dc610c8d
SHA512

ffcfc753e009a66007ce616aa9c31ecdf4a3c1b6371e0f05bfb7b9a04ad4f8d16799961ad102eefd280ed800209b63f5d559fd309da2e29ba8392403bb116c3d
SSDEEP

48:6sAiCtTgyPld4cDTy+o2l1In8XtI/ScBn3P3j1qKwmqXgPMWIPX1S43lmMOOFBvD:wri248dI/TnPjcFzgPMWY50MOgdD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
58101b7b32606f46cbc9421f2ac17292

Files

58101b7b32606f46cbc9421f2ac17292
.exe windows:4 windows x86 arch:x86

6e34b5f8b2e6f26fd0ba4cd3a7115dc4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDCEx

kernel32

CreateThread
ExitProcess
GetAtomNameW
GetLastError
Sleep
WaitForSingleObject

gdi32

EnumFontsW

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 320B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ