62df6d2078d5575a3f826828b6215241 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

62df6d2078d5575a3f826828b6215241
Size

132KB
MD5

62df6d2078d5575a3f826828b6215241
SHA1

07ffd8068a605b7cefadb9a7a02beeb95f5a3d16
SHA256

bea7832de9a9747f86c3032ca400f14944dea019e84dd2f48420dece94dc1ad0
SHA512

1dbb4873ba8b9ff36727f54f53666ba8d28d42acfc2947b24b5020dc571c74f5cb23a9873dbeede448c95ea108bf9a5d5f8613c7e5fa0bd6e2ebd54a4df9a11e
SSDEEP

3072:sJTNuV6tcAaWGO1yNiJrmus6hb77VCGlL:sBzF1ysCuz7VL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
62df6d2078d5575a3f826828b6215241

Files

62df6d2078d5575a3f826828b6215241
.exe windows:4 windows x86 arch:x86

3a5eab9ce6216d9fee82929bc8db48eb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MapViewOfFileEx
CreateTimerQueue
EnumSystemLanguageGroupsA
CreateTimerQueue
GlobalGetAtomNameA
SetThreadAffinityMask
QueueUserAPC
GetConsoleScreenBufferInfo
RemoveDirectoryA
GetConsoleInputWaitHandle
BackupSeek
SetEnvironmentVariableA
WriteConsoleOutputA
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

data
Size: 8KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

text
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 4KB - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ