62729642ea9f8fdf2cccbfd046f9f8fb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

62729642ea9f8fdf2cccbfd046f9f8fb
Size

89KB
MD5

62729642ea9f8fdf2cccbfd046f9f8fb
SHA1

c7424b2a678655d541b56a1a7145c269c1d9abde
SHA256

cb7579839cca81736c6a28fce1d9f25d237949915923ad62efc3e977bc5606fe
SHA512

47a4bd0defba16c20e899107ac6d589197304c585262402fbc1d320647111b40354ce9ee8e7a255e2f1d6c6bf2d283c5581c69a4cbf14b8ed6c5c47b51466311
SSDEEP

1536:4ltTwsWdf06bJMykbrMgBU/E6G7GVNEN63y1lst0DD8xQS1iW:4ltTtWdoyk/XIE9s/C1g1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
62729642ea9f8fdf2cccbfd046f9f8fb

Files

62729642ea9f8fdf2cccbfd046f9f8fb
.exe windows:5 windows x86 arch:x86

077db722f2beab8f486150ec6052b2b4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
ExitProcess
DeleteAtom
DeleteFileA
CopyFileExA
AddAtomA
WriteFile
ExitThread
GetFileTime
GetStdHandle
FindAtomW
FindClose
OpenFile
OpenFileMappingA
DeleteFileW
FreeResource
GetFileType
GetLastError
CopyFileA
ReadFile
FlushFileBuffers
FatalExit
GetCPInfo
AddAtomW
CopyFileExW
GlobalFree
CreateDirectoryA
FindAtomA
GetPriorityClass
ExitProcess
OpenFileMappingA
GetCPInfo
DeleteFileA
GetLocalTime
GetFileType
AddAtomW
CreateDirectoryA
AddAtomA
GetStdHandle
FatalExit
DeleteFileW
GetPriorityClass
FindAtomA
FlushFileBuffers
OpenFile
CopyFileExA
GetFileTime
ReadFile
ExitThread
FindClose
WriteFile

Sections

.g7d9
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.4f75a
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.3860
Size: 43KB - Virtual size: 410KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.96adh
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ