048589aae967e8584f0432cac8c02451 | Triage

Sharing

General

Target

048589aae967e8584f0432cac8c02451
Size

3.9MB
MD5

048589aae967e8584f0432cac8c02451
SHA1

59c73ad687d131e44b98ff253d00080333cc5781
SHA256

7685cb2968c4857e3d5eca97b6ca76ca0bdca43b49b6467d14d38ac2316febfc
SHA512

f82b22876b4470b66dd15a56a8ed171b24bbc769a77e630f43b0a73bb0345600836705f6b98838f5fecd35497985f1fe196b12b54e59a5892a77f1ee7cbdb507
SSDEEP

98304:YMddN9KMDUJuxtxCajPSOyLIlsX7KR+2j86HUWA:YKdNrSOnG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
048589aae967e8584f0432cac8c02451

Files

048589aae967e8584f0432cac8c02451
.exe windows:4 windows x86 arch:x86

65b6862e9898b195f4ef7a1685fd82dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

msvcrt

memset

comctl32

InitCommonControls

user32

MessageBoxA

shell32

ShellExecuteExA

ole32

CoInitialize

Sections

.
Size: 7KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 1024B - Virtual size: 700B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE