1bba6d45b84aafb96919de32556058f0 | Triage

Sharing

General

Target

1bba6d45b84aafb96919de32556058f0
Size

11KB
MD5

1bba6d45b84aafb96919de32556058f0
SHA1

8073655e63fc7782d1182a8b3cc31af709a642e9
SHA256

41a9b160c81ee8884cd70a75c4e2a0fa7d5fe301a7c856a7cabf4b96edcd0ff5
SHA512

125259cf41035f15ce14bf4ec57e8cc39c8ad0ff350dba551731b869a1cdab657c4f946b99bdd8e196ce3c00a0d01de20e117daeac55378e75bb2f95f7879017
SSDEEP

192:d0N4ipCtxN1V7LjmvRYn9FNkSQOX/R9LHHBUZBp9W:d0NJULV7Lj+RA9vXJdHBUZBPW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1bba6d45b84aafb96919de32556058f0

Files

1bba6d45b84aafb96919de32556058f0
.exe windows:4 windows x86 arch:x86

404a566953586dcad4352be406633a1b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
ExitProcess

dsound

DirectSoundCreate

Sections

.text
Size: 512B - Virtual size: 98B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 656B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ