61fe2a3d48f14f8b0b3c3c02f377e76b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

61fe2a3d48f14f8b0b3c3c02f377e76b
Size

26KB
MD5

61fe2a3d48f14f8b0b3c3c02f377e76b
SHA1

0416f52440c5174fee52a34a79edb2e1625c693e
SHA256

73f7480774be9fd61ea5e68fb099199487a6c607ff922e5b9183894dcc2c338a
SHA512

560a534d74302cad6c972f725e8a4be7bebc79cfaba6538644ee3dd0ed60a32fbf2aba585cd5b7095b152078b94a78dc14cedd4c2f5fd0c1caa80b7ab1ba1801
SSDEEP

192:tMHEi8cd7e+TAVo83fCXPkAx1wCMrpY7S8LqPZo5LdCfuR1nuO3qJv:Q8ge+EV7vC8Ax1r6+S9Pfu7n5qJv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
61fe2a3d48f14f8b0b3c3c02f377e76b

Files

61fe2a3d48f14f8b0b3c3c02f377e76b
.exe windows:4 windows x86 arch:x86

dd4fa020b857ab3337c5d60025922295

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

AddAtomA
ExitProcess
FindAtomA
GetAtomNameA
SetUnhandledExceptionFilter
Sleep
lstrlenA

msvcrt

__getmainargs
__p__environ
__p__fmode
__set_app_type
_cexit
_iob
_onexit
_setmode
abort
atexit
fclose
fflush
fopen
fprintf
free
fwrite
malloc
printf
scanf
signal
system

wininet

InternetOpenA
InternetOpenUrlA
InternetReadFile

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE