13722c8c975cdd6c79d30e84520b829d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13722c8c975cdd6c79d30e84520b829d
Size

6KB
MD5

13722c8c975cdd6c79d30e84520b829d
SHA1

48dcffc6b99ed8d80dab8826b5e148902d5e7bed
SHA256

b2ebcc59b11ae919be3c6a197939382996c4b82a4cf210d21df0bd00b27ef03b
SHA512

c7cc6484230cc852220a727c0fe9422eb4e92d93890e783dc8679c646214db6607d8a7de98b23c3460c388f5dc91aa57af1771c23124d29eeea9fdbaca7d03a4
SSDEEP

48:anknV//9p1VJZ2Niy4c/FI6T07SRtKjRaHKmlnYMvvybZR/FPihhoherS93:0kVn9pX3kycFh07GI2Olwr43

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13722c8c975cdd6c79d30e84520b829d

Files

13722c8c975cdd6c79d30e84520b829d
.exe windows:6 windows x64 arch:x64

51296647522d917613aabb3bb3ee58e0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

CreateFileA

api-ms-win-crt-runtime-l1-1-0

system

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vfprintf
__acrt_iob_func

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 844B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 172B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ