39b8c2ebcb9a9f83d9b43f41310cb09c | Triage

Sharing

General

Target

39b8c2ebcb9a9f83d9b43f41310cb09c
Size

25KB
MD5

39b8c2ebcb9a9f83d9b43f41310cb09c
SHA1

46691b33445edd4bb28b093790fdb341deccadb3
SHA256

916aa81070c5ea6a0d6164f0c350941aadc26ec3e938549622a2c0000197cdeb
SHA512

1adb579cd9a798c6c7ea31f134b322a3e40935e281c64231b7c54dd06b45fa635404d91311ffc4adfe015f936aabc6aed01cc0b9d3aacc80dcd2d5cdc23a4477
SSDEEP

384:uMsQFiSfpH/pPIVieqgB1UeK9HM/w+YydCZdfZtcs0GOFrQY0l1dibG:uMvIaDq1UFCw+YaCdfZv0GY/0lGbG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39b8c2ebcb9a9f83d9b43f41310cb09c

Files

39b8c2ebcb9a9f83d9b43f41310cb09c
.exe windows:1 windows x86 arch:x86

e2c69898e19633e9830253504d1e2896

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

ElfDeregisterEventSource
CryptGetKeyParam
FindFirstFreeAce
GetSecurityDescriptorDacl
GetTokenInformation

kernel32

ClearCommBreak
ConvertThreadToFiber
CreateEventA
CreateMutexA
DefineDosDeviceA

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE