1fb06a11a52dcb159cb2ea9f42b37356 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1fb06a11a52dcb159cb2ea9f42b37356
Size

41KB
MD5

1fb06a11a52dcb159cb2ea9f42b37356
SHA1

9b8858566609e3aed9b92db4bf7a4aac547b64f2
SHA256

be042bca62bf0ca496a774557af944442b6f0616adf5e60b3ab2e208370a972b
SHA512

dd36ee4687eac1a8b5e828b84b38cdde80e1d30be467c34bf40958b71c225a3248c33e6fe9143be67117606179568c4da6923a75818e955c119bb61626496e4b
SSDEEP

768:BlAriQcTu/Qn5SJMetguVAi4foAoI/717ySk03A16o5o8mQx9WM:QfUC0SietJfab1mnXsQxn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1fb06a11a52dcb159cb2ea9f42b37356

Files

1fb06a11a52dcb159cb2ea9f42b37356
.exe windows:5 windows x86 arch:x86

eb5360cbb2adbaba3486021d5ff58b19

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteTimerQueueTimer
GetLastError

user32

CreateMDIWindowW

Sections

.text
Size: 23KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rnlzfzp
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 188B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE