66f337380d8997a92987d02173061056 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

66f337380d8997a92987d02173061056
Size

156KB
MD5

66f337380d8997a92987d02173061056
SHA1

b5ca1b4fb251a1808bce9552ca2b3a9273ff9b1f
SHA256

c26ce6c1fa70661811e9723d33101b4fbb155e90fc893192661c2356954ae7d0
SHA512

e7d7028afa6c654ea50a78a2a67b2ed9476cc09e1a3caac2a1eccb67d598035f43a2e4da63d71d2feb04a8b3502882955ab1d949c554893f25a7a1865fbc2c99
SSDEEP

3072:W6QJm8D1mB/hsrwTwj/IhF7Fe6HRbVu4fYBAEaIPhVaOX9sg:W6Qg8xG9DJHRbVupPpnaOX9s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66f337380d8997a92987d02173061056

Files

66f337380d8997a92987d02173061056
.exe windows:4 windows x86 arch:x86

0ef08b5c4ef67fee8f3a5ae1222c9984

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
SetUnhandledExceptionFilter

msvcrt

_fstat
_getcwd
_isatty
_open
_read
_close
_strdup
_cexit
_errno
_fileno
_fmode
_fpreset
_iob
_setmode
__getmainargs
_stricmp
_strnicmp
_wcsicmp
atexit
bsearch
calloc
clearerr
exit
fclose
feof
ferror
fflush
fgets
fopen
fprintf
fputs
free
getc
getenv
isalnum
isalpha
isdigit
isspace
__p__environ
malloc
memcpy
printf
putc
putchar
puts
qsort
realloc
setlocale
signal
strchr
strcmp
strerror
strncmp
tolower
vfprintf
__set_app_type

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 768B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 138KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE