264e5a9fcb69fcf8faf5f8b94f3ea9aa | Triage

Sharing

General

Target

264e5a9fcb69fcf8faf5f8b94f3ea9aa
Size

29KB
MD5

264e5a9fcb69fcf8faf5f8b94f3ea9aa
SHA1

cf223e1b22bf40bcb16276bca5899f1811127bfc
SHA256

e0cf07f05d72d4cd45d47c224cc766688d339dbc17dbc10e2c1a42bbbb23d798
SHA512

7c0e599c1602a78d2f62f2a6c357cbe6acf4f0ced71c35c5f2f1299ffec3d3797dbd02f5719bef6fd3413aebddb278db013af6d69c779fa7e46f12ea016d73f8
SSDEEP

768:wig/QbraTkDBJMscso1Amh90/LQFDft4+xtNU:7gSuzJqmh9ogtNU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
264e5a9fcb69fcf8faf5f8b94f3ea9aa

Files

264e5a9fcb69fcf8faf5f8b94f3ea9aa
.exe windows:4 windows x86 arch:x86

3a77498ef59ea67336efc2d57549749e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleCP
EnumSystemLanguageGroupsW
OpenConsoleW
ReadDirectoryChangesW
LoadModule
VirtualUnlock
SetLocalTime
GetShortPathNameA
HeapUnlock
GetSystemTime
ClearCommBreak
SetInformationJobObject
GetThreadSelectorEntry
FindResourceA
SearchPathW
CreateMutexA
GetFileAttributesA
SetFileAttributesA
MapViewOfFileEx
GetConsoleAliasExesW
FindCloseChangeNotification
ExpandEnvironmentStringsW
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

.code
Size: 4KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ