0bb0a25556d6cd4fd9926dad9fdaa0f9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0bb0a25556d6cd4fd9926dad9fdaa0f9
Size

129KB
MD5

0bb0a25556d6cd4fd9926dad9fdaa0f9
SHA1

19fd8567fbdcf51720ee53b1efc33930eb2c2a4a
SHA256

69f4de56fb3d24726509c0c063c4010f97286f147b5691daac356c65e2331431
SHA512

4f9c634956b9de6e0ad1bf9428a2efb73fa798aa770ef6b633dc4f0b7a77a67dd5783becc20b3511e97eb92cd4f9746bea24cb591bcde04be7658f530b1306fb
SSDEEP

3072:S1GgolgC4pdU85isDx7JX6ubUBeGVnMzh94Um+B0V5Msxmxd:2G3d4PBYidJZUBDn+v/CfMsu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0bb0a25556d6cd4fd9926dad9fdaa0f9

Files

0bb0a25556d6cd4fd9926dad9fdaa0f9
.exe windows:4 windows x86 arch:x86

bd51a645a9c68bd03b2e51586e5cbdcb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rawdat
Size: 119KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE