1b32010c6a3d2f5160bb5a5b87e222c0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1b32010c6a3d2f5160bb5a5b87e222c0
Size

2KB
MD5

1b32010c6a3d2f5160bb5a5b87e222c0
SHA1

7b1e2e8caab856bb571ddec37d41d985ff6e0eb2
SHA256

7c1d80065dacc4bc60fc215ea45bd6f366749a1f4de0f08cfa9a4d6071b8c504
SHA512

0aa511cc384900f705783981df693fb97ce9edb25966dcd5a55c302a27572746d069e8989f333a8180c5834e8d609b74c65fe692f5ff7e7d8dd3c9c1494a9d94

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1b32010c6a3d2f5160bb5a5b87e222c0

Files

1b32010c6a3d2f5160bb5a5b87e222c0
.exe windows:4 windows x86 arch:x86

2f95a45747e99483382032e084d5d74a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetTickCount
GetLastError
CloseHandle
Process32Next
lstrcmpiA
Process32First
CreateToolhelp32Snapshot
ExitProcess
CreateProcessA
WaitForMultipleObjects
OpenProcess
CreateEventA

user32

FindWindowA

Sections

.text
Size: 1024B - Virtual size: 890B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 484B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ