26b7aeab79589da6080a2553daec5592 | Triage

Sharing

General

Target

26b7aeab79589da6080a2553daec5592
Size

142KB
MD5

26b7aeab79589da6080a2553daec5592
SHA1

026dfbd1d6b2ad757df34e42eec3d95b57bc4cc3
SHA256

331e1af541f672081b5d3cc6e6803363b1dd01b1778b3a199b50c2f3bc051ff4
SHA512

aee54d6d241f2867f318eabc596270830698b21be7c2f16fef1470eabadd00093bd3c9e0a64bd88d9bd9c7095735f571c0e9eac393f3aed37c3b2a9afb810006
SSDEEP

3072:fDoYaxRMMIdY44/+LFIxUKy5hpi7W7NER:7oYaXAdd4/+LFIxUrpiGeR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26b7aeab79589da6080a2553daec5592

Files

26b7aeab79589da6080a2553daec5592
.exe windows:1 windows x86 arch:x86

e2649837c59f87885ca4eb82bebd799b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
VirtualFree
GetProcAddress
EnumSystemCodePagesA
GetModuleHandleA
ExitProcess

user32

DialogBoxParamA

Sections

.code
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 282B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ