072982ba2bcf656dc8addedad65b430f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

072982ba2bcf656dc8addedad65b430f
Size

36KB
MD5

072982ba2bcf656dc8addedad65b430f
SHA1

15c60eb4635976a6d95c22a8f7191dfa9cc343b6
SHA256

ed7a9c62234e73e7095b1214a79c7d4a592525335e3958cdde59c989a21a7611
SHA512

6175957c51e5bab90c3dfc781c3ec9bf4842383207be60ba26e072f8bf3c5b9e61a9f7aaff0a99a8c1438bfc13376315b9640f26be23e08811123082784bca15
SSDEEP

768:dgBata5kRkdxuiMA4TcKd6emZ+9ylp3TG2gc3FumdPN:mRkCdX4TxvXMTjG2gmL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
072982ba2bcf656dc8addedad65b430f

Files

072982ba2bcf656dc8addedad65b430f
.exe windows:4 windows x86 arch:x86

7b6d0f5ee5120e727e898492da488b46

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
SetConsoleNlsMode
UnmapViewOfFile
FillConsoleOutputCharacterA
SetConsoleNlsMode
SetConsoleMode
RtlZeroMemory
GetPriorityClass
GetNamedPipeHandleStateW
GetLogicalDrives
GetFileAttributesW
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

.code
Size: 4KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ