13b0f77f99ccd3812304e6488b131f78 | Triage

Sharing

General

Target

13b0f77f99ccd3812304e6488b131f78
Size

15KB
MD5

13b0f77f99ccd3812304e6488b131f78
SHA1

06a1d4561c0a151c8e89aa19fdd564f22ad92645
SHA256

1a205bedd933e028fb9bf5fcdc367503f961ac0e06e9cf0cfebdd2c711f7b68a
SHA512

67b8d144e04a02aebf885dfb35997fc7274ae2f9a609b655e8a0dee4d7a1e53f39a97881fe31ea2bf12aac9a7c7384de93f4257f0706c3e1baa3dc8d5adad4eb
SSDEEP

48:6GZ41ue8y4/56sslYK1ieMaRQ/QOBoRYcFv/awd+MyoxOnftzBq7:dsDl4/L6X19LRQ0bFv/5raftzQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13b0f77f99ccd3812304e6488b131f78

Files

13b0f77f99ccd3812304e6488b131f78
.exe windows:4 windows x86 arch:x86

75425eba3977a336dc6c3f1c3bcbbf37

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDCEx

kernel32

CreateThread
ExitProcess
GetLastError
Sleep
WaitForSingleObject

gdi32

EnumFontsW

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 320B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ