041577cac99f8aecbe983c8e5f76aae1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

041577cac99f8aecbe983c8e5f76aae1
Size

60KB
MD5

041577cac99f8aecbe983c8e5f76aae1
SHA1

fe9d424ba9f2c8f9bd07eb79d8f698dfbf652fae
SHA256

7ddc92ad632a11b8a904f5b033a8fde9538f205dfa631753dc662bfe64c6fa70
SHA512

da71cbd3510907db978188dc771962aa5f5807287664d5729bb72b8025ac36b3a3d0339632cee85f169fc581dcef9da841f2d68b3bfbf828bd18d847a515c892
SSDEEP

768:TPEujuDhhlSBeeYFaqxjGJ+Pi4WUpGlbCIohw/58mUu/QPWb6yDaBtJoLIOFGID:TPIxScpT8nbdohOfUK92BfoIITD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
041577cac99f8aecbe983c8e5f76aae1

Files

041577cac99f8aecbe983c8e5f76aae1
.exe windows:4 windows x86 arch:x86

f8181104b87f379b4d174288fbbeb7be

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
SetUnhandledExceptionFilter
lstrcmpA
HeapAlloc
GetACP
MultiByteToWideChar
FormatMessageW
SetStdHandle
FileTimeToSystemTime
HeapCreate
HeapFree
GetLastError
TerminateProcess
GetFileSize
TlsAlloc
lstrlenA
ExitProcess
IsDebuggerPresent
VirtualProtect
MoveFileWithProgressA

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 548B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ