fcb26ace0aa61a1bed4e13887caed05d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fcb26ace0aa61a1bed4e13887caed05d
Size

224KB
MD5

fcb26ace0aa61a1bed4e13887caed05d
SHA1

4e16dd9a3be0d64e4b5994cdd99b0c9789749333
SHA256

6cd0aafdc91e87b1dcc56b6d7b8cad61f93afdb8d9b40b2842337a743612dae9
SHA512

2ee84989bb65818b0862ef2da1cf60fc6a2a3f4fc0a96808aa90cead686f22d39a56b5ca5b55993648b00034fd7a27e40e2f6d3783bb27dfff0c25f98e50a107
SSDEEP

3072:yw3sP568FlQqTeE5gHH0e7wXpXUiJSYdN2eghMgYbOkxG7gieM7g2bvLAuXz38z:NEc4lvBs7wZXUWSeweghMpzMLbLAK38z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fcb26ace0aa61a1bed4e13887caed05d

Files

fcb26ace0aa61a1bed4e13887caed05d
.exe windows:5 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

.text
Size: 134KB - Virtual size: 376KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1utko5iq
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.8h.qyni
Size: 57KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1.h.ge97
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ