fb24c9fc34f068370ddcfc1f1f712ce9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fb24c9fc34f068370ddcfc1f1f712ce9
Size

13KB
MD5

fb24c9fc34f068370ddcfc1f1f712ce9
SHA1

027069fe66aa96af2af9286c2adfe5684993db28
SHA256

0f2c6e49e6c357c4a1d6ce7d027d57ec4ff9f423da0c433f947af21abdc56aab
SHA512

18c2f287f5bcd2818f6121060ca9032b1c031602bf01765297e840c5be983d931b530bedd92c23b111b6f30a1b1ea2332c94a0abee8ac80b53acb38f92b8e850
SSDEEP

96:12yGJGfLkk/QgabTUsZxEy7XzqFe5BYQ:cXbYsDv7meDYQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fb24c9fc34f068370ddcfc1f1f712ce9

Files

fb24c9fc34f068370ddcfc1f1f712ce9
.exe windows:4 windows x86 arch:x86

c01043471ba7fe043ca590b1c3a72137

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC
GetClassNameA
DestroyWindow

kernel32

CreateThread
ExitProcess
GetLastError
QueueUserAPC
Sleep
SleepEx

gdi32

GetObjectA
EnumObjects

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 384B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ