6d373b6d430e6c203dd7256f4bb40bba | Triage

Sharing

General

Target

6d373b6d430e6c203dd7256f4bb40bba
Size

21KB
MD5

6d373b6d430e6c203dd7256f4bb40bba
SHA1

fac3a047b0602c68dc1bdbfc6895b083b1c39289
SHA256

cb8d6687b10dc61bae8eabe200872289d3c48db0c96812e5a1e0209e42f23c08
SHA512

7d5a8b55aa1e871d0e30d6a30845991172f5e2a9b3aeae86b0bd0bc0c7fc5ff0091e8bce1ec603f8387cd2161a74f5155b03e77e5b77825939bda4951059123e
SSDEEP

384:gf3e/rD+uu2uJhWFxqSuw+QLjjRNgsN17pqyQ0xzA:muvFxH1LJe4hC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6d373b6d430e6c203dd7256f4bb40bba

Files

6d373b6d430e6c203dd7256f4bb40bba
.exe windows:5 windows x86 arch:x86

74f53a0d3731d9f3cf03d2aa6db2137c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiOpenClassRegKey

kernel32

GetLastError
FindResourceA
ExitProcess
VirtualAlloc

Sections

.textbss
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 232B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 150B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.debug
Size: 512B - Virtual size: 407B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ