231251ac20f845f040fc807df964405c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

231251ac20f845f040fc807df964405c
Size

9KB
MD5

231251ac20f845f040fc807df964405c
SHA1

b78cd48a00bad449755a758e6b5643b89ef61900
SHA256

e7e4b6742791afba71aa6d3e144f5751d3ff5c41435eed702c967a1c9adbfcf5
SHA512

fbe23a53973fb011df255836783e25af14816647d31441cee5ca796864251e8d643b6acb13bcf5f9f58d275b7d43a51ddd8e579a0284c27fbc48c0a73196bb6e
SSDEEP

192:uwEIwHZAjzj8gi5OvfflKXDHt1gm/YKCtMYD:un4Xj8gi49Qjt1BCt3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
231251ac20f845f040fc807df964405c

Files

231251ac20f845f040fc807df964405c
.exe windows:4 windows x86 arch:x86

ef5188e6ba8c136367cf0d3ddb752c99

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
lstrcpyA
ExitProcess

user32

wvsprintfA

Sections

.text
Size: 512B - Virtual size: 318B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE