6b921ed9d355c5aa60492fe34e42f760 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6b921ed9d355c5aa60492fe34e42f760
Size

99KB
MD5

6b921ed9d355c5aa60492fe34e42f760
SHA1

4df64d3ad02269acdf786427b058eda29e6b9e46
SHA256

41ccc1cd2943592279ac618b1db6ac19918f52dfa6f9dbd515e79bfa4931b594
SHA512

332b4b06b4ca00c4436982ab6c0ae6ad51ea68be8fdfdb97e0871bccdb99320a6c59192240a5b146a839f445e2ad1be6eb2bf82ba00701323e39d5ab36d221f7
SSDEEP

1536:1RdnMWKOLkqFsxDyjzveaJpl2rW9gsVRQRxS8mN74wDdDIRC:79RLpFsxDynveaUrkgsHQRxS8mN7Td0I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6b921ed9d355c5aa60492fe34e42f760

Files

6b921ed9d355c5aa60492fe34e42f760
.exe windows:1 windows x86 arch:x86

0afa973396352c3dff43a7d04544feb2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlUnwind

user32

MessageBoxA

crtdll

_iob
_itoa
__GetMainArgs
_strnicmp
abort
exit
fputc
fwrite
getchar
localeconv
memcpy
memmove
memset
pow
raise
signal
strcat
strchr
strtol
wcslen
wctomb

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 608B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 88B - Virtual size: 88B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 784B - Virtual size: 784B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE