1456664985d5a8667d4c600a76c148e1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1456664985d5a8667d4c600a76c148e1
Size

43KB
MD5

1456664985d5a8667d4c600a76c148e1
SHA1

7d04a6a2f2335b3a3c606e0101ce6b6861f16bb0
SHA256

8c62a2c1dfe055b5162c6b3796d65db56c7bc708ae80ae6e77a03da26888b454
SHA512

9315f158023d882a31d2077a7ed8e130efad5eb0191c567776e9c5e573f88334cc4890cf0899d21c0c310b95d8746c14a893aa212b14b1718d9612d0a660edff
SSDEEP

768:WJ+ZgNRcyC1dnHGmn/1pwnHByQ+XvFCQplr8yNfiJL:Q5N2ySdntLw+vtpiyMJL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1456664985d5a8667d4c600a76c148e1

Files

1456664985d5a8667d4c600a76c148e1
.exe windows:4 windows x86 arch:x86

8fd132dda85977a112d2f82151706f5e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDateFormatA
GetStartupInfoA
LeaveCriticalSection
MapViewOfFile
ReadFile
SetEndOfFile
SetLastError
TlsAlloc
VirtualAlloc
lstrcmpA

msvcrt

_wcsicmp
fprintf
swscanf
time
wcscat
_cexit

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ