029340dff06f5ed6d8492b71076cbe4b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

029340dff06f5ed6d8492b71076cbe4b
Size

17KB
MD5

029340dff06f5ed6d8492b71076cbe4b
SHA1

aa4d3933e4b74ceb00512d740772cc509e27a54d
SHA256

bdcd4650205c39c1eaad6322c876c4a96ce498846af0446d91c64462ce83100f
SHA512

0e89270e7fd9bc02ba86c1c72c0e3108cb1ce33b1329a5626ebc71a43b4715924660a01e9fb38957a9950ae584839d4ca55144b223520197158ac5f63e161fdb
SSDEEP

192:oyGpV67Ax3keLlupFQmiEXcjXnqrAi5W6p1G75OVG6iwrs+J74sU3vS6LE6MOod:Vq6m3ThupZjrakw75Obiw5J6jLPVo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
029340dff06f5ed6d8492b71076cbe4b

Files

029340dff06f5ed6d8492b71076cbe4b
.exe windows:4 windows x86 arch:x86

451b4453b78d0087846f5cd37de5790e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetPriorityClass
GetCommandLineA
SetCommMask
VirtualProtect
ExitProcess

user32

DestroyWindow
GetWindow

shell32

StrStrIA
StrStrIW

Sections

.text
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ