120277c8bf2ee4380e0b88ed84062d49 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

120277c8bf2ee4380e0b88ed84062d49
Size

12KB
MD5

120277c8bf2ee4380e0b88ed84062d49
SHA1

85f40c17bf11b569a9418e723e1eedf386ef9879
SHA256

6ce3c62ce8291af2b9d6ec472febe6f30da06b21c78fb6d9ecb91f6ad3d78982
SHA512

53093f58a676a9c8e1e628c8b765df4ce6c0e2dc0f227cc51566665126b50af1d7a7ef6b989899730ca3ab567fe3305bb4c450581d3d699ab83fc4515916137e
SSDEEP

96:cCEAuTcgHMJf2ZLxDZnARKBCv4JdRbTCn71yQtQKQYQ:cCEAuT3sNQnARIvC7MQjQYQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
120277c8bf2ee4380e0b88ed84062d49

Files

120277c8bf2ee4380e0b88ed84062d49
.exe windows:4 windows x86 arch:x86

c162473f2b23a9ebcac3fd8a0fcf7b1d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDCEx

kernel32

CreateThread
ExitProcess
GetLastError
GetTickCount
Sleep
WaitForSingleObject

gdi32

EnumFontsA

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 384B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ