13b2197063841fff084202216d9434b6 | Triage

Sharing

General

Target

13b2197063841fff084202216d9434b6
Size

30KB
MD5

13b2197063841fff084202216d9434b6
SHA1

2000a282a10e8cd504aa0aa2d60f2d92a41d9af6
SHA256

29bcb1df7d713440f3fd451983838b799c045af7641baafcf5f47c37c998c266
SHA512

23c341205b861eb750564f94d6f7b05ac958afb360bb259a3d1ecbbcdd1f4163275b564eed7db83d97ddcde6e9ac0245a6b405215be0a5dda31978cb603975fb
SSDEEP

192:MjRxORC7Hp0Bpjn24iGOVWMEB6uT33zMxQ:MjyRwmBpjFHOlEBhjjoQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13b2197063841fff084202216d9434b6

Files

13b2197063841fff084202216d9434b6
.exe windows:4 windows x86 arch:x86

b622ce9889cc6c0c5f000b296d2d67f9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC

kernel32

CreateThread
ExitProcess
GetLastError
GetTickCount
Sleep
WaitForSingleObject

gdi32

EnumFontsA

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 384B - Virtual size: 318B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ