0f279624de30e1c12ebb2f6835e4dc12 | Triage

Sharing

General

Target

0f279624de30e1c12ebb2f6835e4dc12
Size

33KB
MD5

0f279624de30e1c12ebb2f6835e4dc12
SHA1

52038df64a3f56612dc1e0e6f9b14b5ac259883a
SHA256

2578ef3c67327dad3973817a65d87ee7b9b1c6ff414d0cfaba091aa0b31a6441
SHA512

b6b8eef34e1f2c81c0377dd9270044c115d9ab602882a60b64a3ee033b23385f8b3e9b5ca24650d6555a72e542d9822fb7e9be510a099346dc11456b21c42c5e
SSDEEP

768:+WKE/tYmgsJU7hKFivAiKqvG1ir8ee70/PXQkz9hTiVzBChrHpd1:+WB/atsdF2AiKq+1W8BA/PQkz9h+YHr1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f279624de30e1c12ebb2f6835e4dc12

Files

0f279624de30e1c12ebb2f6835e4dc12
.exe windows:1 windows x86 arch:x86

68675c8b50c5ad2ebdcafc2660a2c3cd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
IsBadCodePtr
GetCurrentThread
LocalHandle

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 28KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE