27c9258c03cf6499c4ed8a1a1f695701 | Triage

Sharing

General

Target

27c9258c03cf6499c4ed8a1a1f695701
Size

63KB
MD5

27c9258c03cf6499c4ed8a1a1f695701
SHA1

ba5ef1ef2bb7ba435edc979a11d0ccfe5c6dbd14
SHA256

29d5883d836a2937813f1f2a66e55ee9ed6e9b20872aaaa37ef66ec1c10e8cbd
SHA512

a24cccbf70a205fbcee145ac6287c6abc55a42fdeeaeebc6c72e251cc61654f93fccf44a064f3cd78da3db5016ec3c7e0126207d4ff8440cd4db40f09bd186fe
SSDEEP

1536:0Pt9uEnwclRdCgbY+yxyaOL0e1I31wtM95ipM:0Pt9ZweI+yxyJ0e1ICuqM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27c9258c03cf6499c4ed8a1a1f695701

Files

27c9258c03cf6499c4ed8a1a1f695701
.exe windows:4 windows x86 arch:x86

1f3221b1275fe0353ad187d5ac902b5f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RequestWakeupLatency
OpenWaitableTimerA
EnumSystemCodePagesA
GetCPInfo
GetDiskFreeSpaceExW
SetCPGlobal
RtlCaptureStackBackTrace
GetConsoleAliasesLengthW
EnumResourceTypesA
FindFirstVolumeMountPointW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE