0ab50eb28e54bfc0697dd9beac7752ae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0ab50eb28e54bfc0697dd9beac7752ae
Size

12KB
MD5

0ab50eb28e54bfc0697dd9beac7752ae
SHA1

9b9a6d69ba2cb8b285175880ad79032fc3ae39af
SHA256

1602d71fcf9679fb9ece89da6c2eb450b1c6f22f1c4fff62d8ebcbb31e9fe183
SHA512

70a4e0d4ec243d465fe62099710c082432c6990bdb7c0c1359beadef2ee023def65fb8fe3a0b559faef302dc80835aaf279ee7f3d3d8bf08c21957f47804a988
SSDEEP

192:rSfT84zOsZJ02F5DHqpNWCx1hBdMcgbFXLsgFHfnk3ZLwzg10/Z:rkTB6sZp7qSCTv6cgbFbpfnxzg1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ab50eb28e54bfc0697dd9beac7752ae

Files

0ab50eb28e54bfc0697dd9beac7752ae
.exe windows:1 windows x86 arch:x86

820f438a6599f2d262513b6a9cfe4b87

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileA
GetModuleFileNameA

user32

DefFrameProcA

gdi32

CreateFontA
CreateFontIndirectA
CreateICA
GetFontData

Exports

Exports

time

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 372B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 65B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ