04ba6c792ef245e3a377040c926e8412 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

04ba6c792ef245e3a377040c926e8412
Size

440KB
MD5

04ba6c792ef245e3a377040c926e8412
SHA1

19c689119b04452d017b655dd3f8ea58f0785d1c
SHA256

98b4005a6a262aa2aa7580b64a1d26ea2a616f641778515fcfb441ce8f413cb0
SHA512

e8a8004c00dff901709ee4d9b5d0ca18a33c2f4a4d7f4cb94548641bf17b62895694f7aea76052188a789e84737b8245b7fd005a0e638fc7491c4802777aa501
SSDEEP

12288:Om69Km3BveFh416Pqkcz3nwWmewhd9T9faQO9pz1AIsfOjpo:OXVBvu+5zXmHd9lOPJcfOjy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
04ba6c792ef245e3a377040c926e8412

Files

04ba6c792ef245e3a377040c926e8412
.exe windows:4 windows x86 arch:x86

f7ffbc3def639f6f20480a10a220dbca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

ZwQueryDirectoryObject

kernel32

GetUserDefaultLCID
GetSystemDefaultLangID
GetLastError

Sections

.text
Size: 435KB - Virtual size: 436KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 210B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE