152146b940e5fecb93011c27194face7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

152146b940e5fecb93011c27194face7
Size

115KB
MD5

152146b940e5fecb93011c27194face7
SHA1

911d6780efb1805e1441d819b9e187101c6125c7
SHA256

12e46cfbe62bdcc9a9fe86ac60b4dce36a01d9c0b9cf6c5f8b550884d565a197
SHA512

2c0a4ef7da4f11646c01b85a41596f4cbdcd87885b0ef2ed9360ddc5acc7212289ac9e840c9eca8e484b0b72423121f6b65f5fbbbdff5d0b6e323636281d1d77
SSDEEP

3072:sGsuDuGOHPObr9zeQblGckfB67Tna7ihpc7kZU4b/dRs2ldAkE:sKDMmX9qGkckZ6yP/4HssdAkE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
152146b940e5fecb93011c27194face7

Files

152146b940e5fecb93011c27194face7
.exe windows:4 windows x86 arch:x86

cacbf4e13b885eb9425dbc81cd573fc2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteProfileStringA
WriteConsoleOutputAttribute
VirtualFree
ReadFileScatter
CompareStringA
GetUserDefaultLCID
SetConsoleActiveScreenBuffer
CreateHardLinkW
LockResource
ConnectNamedPipe
LocalCompact
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

.text
Size: 5KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE