6056e0a2cf56955c4db566b19d3f1e68 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6056e0a2cf56955c4db566b19d3f1e68
Size

3.1MB
MD5

6056e0a2cf56955c4db566b19d3f1e68
SHA1

593c657b9bc1099daba27764958e80f708afffb4
SHA256

14d0619ee7d691cf563a349ac4162313b2703cff53538fb172299be84a6ac298
SHA512

c1a42c91b584cdde56bd3cafc9596af966fd56f501741ea91b150e3afc5c5cd4452e6054aabb8f164bdf39202c96a283d0f9900d6737d8b26ddb46be02a7fe5b
SSDEEP

98304:y7CJriRsR3dh5M5dLrEOV1lqKjCqtgDvw:y7CJwmh5ONj4KjCSQo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6056e0a2cf56955c4db566b19d3f1e68

Files

6056e0a2cf56955c4db566b19d3f1e68
.exe windows:4 windows x86 arch:x86

123baf1bb8fe402df13739591f0fae05

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

GetModuleFileNameA
GetEnvironmentVariableA
ExitProcess
FormatMessageA
GetLastError
SetLastError
GetProcAddress
VirtualProtect
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
GetModuleFileNameW
GetVersionExA
VirtualFree
VirtualAlloc
GlobalAlloc
SetFilePointer
ReadFile
CreateFileA

Sections

.text
Size: 47KB - Virtual size: 668KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE