6dff7c8af5d7a89817527822fcdd7e10 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6dff7c8af5d7a89817527822fcdd7e10
Size

161KB
MD5

6dff7c8af5d7a89817527822fcdd7e10
SHA1

ac895248648ef7dc9186334b21ebb57b4f5e33fc
SHA256

35e1ed2f5051e57a4b1482c450e5cd4126a42e3d1da83a0302d3a34268e9e0ac
SHA512

8fc6f6efd31c83e8e424f460a43ad8d34ccd01a750e041e9af03090761916c176580856687379635f3f94967bbb48932927c60a4183b55c92f9b74badd20b63e
SSDEEP

1536:HtZ3ZuA4yt6XU2yndXSs4uWKtBbvWA0VTu8J2pvckCNxqmrQJDkAZTAJ:HfputyngW9eAwn20hqmrQJDZZTA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6dff7c8af5d7a89817527822fcdd7e10

Files

6dff7c8af5d7a89817527822fcdd7e10
.exe windows:5 windows x86 arch:x86

78a7126e9314ccbe33671b0d8f93aef9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
HeapAlloc
ExitProcess

user32

GetDlgItem
GetMenu
InsertMenuA
IsMenu
LoadMenuA
AlignRects
DrawIcon
CopyRect

advapi32

RegLoadKeyW
RegQueryValueExW
RegEnumKeyExA
RegCreateKeyA
RegDeleteKeyA
RegEnumKeyW
RegGetKeySecurity

Sections

.nfhb
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.fpneb
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nelfo
Size: 121KB - Virtual size: 433KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ioce
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ