13470a19ea708de9d6a42d6599c05168 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13470a19ea708de9d6a42d6599c05168
Size

27KB
MD5

13470a19ea708de9d6a42d6599c05168
SHA1

0437904ea69df449473d3d10ff82f722b03edb39
SHA256

0e0c1f24467cdd03f8ae0411f0122f64d7ea83bb6b7e7d3eb37f7215739ab55d
SHA512

2ccb9d31bf8d8117eb2e72ccb74fc8601d03e7346eb3aacfea4522f73b81ffa5e3afdb04222c7aeccdbb69aa4b0d8125568eaab9ea9087ac064b44ec79d46f4d
SSDEEP

384:KwGX+JxcBp/CyknYqSYH63ZDOGUUWm1cGIkWIA/OOpVQYeV5A3s2f:LGccnvqYqSY26J1LGTWoOvQYeQc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13470a19ea708de9d6a42d6599c05168

Files

13470a19ea708de9d6a42d6599c05168
.exe windows:4 windows x86 arch:x86

541160bce55bf5030f1053d9ca2f310b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

ExitProcess

Sections

.code
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE