6d2ea045b3f6222f6b3892e02bca1055 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6d2ea045b3f6222f6b3892e02bca1055
Size

249KB
MD5

6d2ea045b3f6222f6b3892e02bca1055
SHA1

6037f6220d405c8002b3c88a9a4c36d195b1db98
SHA256

00629a4b72772620d9fae9df2210ceb9e95322661758d7242cab75f9ef564b13
SHA512

bf4e2faba33dc3a12bfc47a99c7dbdae47874de219c4edd15d5adf957cd1f9b64c3752b3b18eae87f4b64c92f16033f4e4525e13a8cdd906c3f6abe6e276a598
SSDEEP

6144:qHaosPOvb27I91wkpzPQ/d45JCxlZd4izCW5rRhg2t:qgPOvb27SJm45OOizCW5Nt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6d2ea045b3f6222f6b3892e02bca1055

Files

6d2ea045b3f6222f6b3892e02bca1055
.exe windows:4 windows x86 arch:x86

8f582d424e9ff1a1fe8cb9cb59bc3186

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitializeCriticalSection
GetTickCount
GetFileSize
ReleaseMutex
GetModuleHandleA
AddAtomW
ResetEvent
CloseHandle
GetCurrentDirectoryA
WaitForSingleObject
DeleteFileA
GetSystemInfo
GetStartupInfoW
HeapSize
FindClose
HeapCreate
ExitProcess
HeapDestroy
SetEndOfFile
GetEnvironmentVariableA
SuspendThread
CreateMutexW
FindClose
GetTickCount
CreateFileA

wininet

FtpFindFirstFileA
FtpGetFileA
DeleteUrlCacheEntryA
FtpPutFileA
HttpEndRequestA
HttpQueryInfoA
FtpDeleteFileA
FindCloseUrlCache
FtpGetCurrentDirectoryA
FtpCreateDirectoryA
DeleteUrlCacheEntryA
DeleteUrlCacheEntryA
FtpOpenFileA

perfos

CloseOSObject
CloseOSObject
CloseOSObject
CloseOSObject

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 708KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 243KB - Virtual size: 242KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ