62b0f9d9511960335620ee1c4a1f67b8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

62b0f9d9511960335620ee1c4a1f67b8
Size

132KB
MD5

62b0f9d9511960335620ee1c4a1f67b8
SHA1

bf5b24948fd0fd9be5f5cc9b5f40cf276b9864ab
SHA256

8f462028fe2652650e372213d1980443e1d18b71b7fd1224413e6bc1941a1788
SHA512

49816c6c00d963dcabccef72d9d2cd9a7e4bd2b4e1b7f46bcbde8d72b15c95719b7be96487b2269e3aeff25dc392810d02e37b5236d271d7b8dafa3eda22251f
SSDEEP

1536:pZliaXCPLqvWPDoeWKLlNHIzn8hGVGszdaMVsQ0yYPUvFo24OW+BUKhB6gaU4Fzp:pZl+WvWPDbWKLDHludY/24OW+BthwgK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
62b0f9d9511960335620ee1c4a1f67b8

Files

62b0f9d9511960335620ee1c4a1f67b8
.exe windows:4 windows x86 arch:x86

52d67719ced09fdf6db2305781b59deb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
OpenSemaphoreA
SetLocalTime
SetEvent
CreateFileA
GlobalFree
CreateMutexA
LoadLibraryA
GetFileAttributesW
lstrlenA
GetFileSize
Sleep
GetTickCount
CreateSemaphoreW
SetLastError
HeapSize
CreateHardLinkA
GetModuleFileNameA
GetProcessHeap
VirtualProtectEx
CloseHandle
WriteConsoleA
CreateDirectoryW
SetLastError
GetStartupInfoA

comcat

DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer

ssdpapi

CleanupCache
SsdpStartup
FindServices
SsdpCleanup

wininet

FtpCommandW

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE