39f6b313a155f18ec9e06393cd9f44ac | Triage

Sharing

Copy URL Twitter E-mail

General

Target

39f6b313a155f18ec9e06393cd9f44ac
Size

89KB
MD5

39f6b313a155f18ec9e06393cd9f44ac
SHA1

fb6b8fe9814c04306c3b6e71111b5bfae58b34b4
SHA256

79bc93e988dd186a68bc93ccd502f3da7c53ca93d772a19a154ed82afbc61c7a
SHA512

7a1091dba273ca9672239a7d1a5fc1730655dcc415a2e97c39084ef74fdcc787faa9f1099616149ecc47be3ba31acf787ba82b46aa44c6dfd53e08ed2ae4ad81
SSDEEP

1536:Jv3yUsuNk66D8xyBZDALSr6wx6IhZveR1wHKetn2/k7B8bwkH:F3yUsuNk8y1/r6A6qZGRWHKedak7ybww

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39f6b313a155f18ec9e06393cd9f44ac

Files

39f6b313a155f18ec9e06393cd9f44ac
.exe windows:4 windows x86 arch:x86

4fa25f1c2cb437208280eb44f5ca4c6e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeConsole
DeleteCriticalSection
EnumResourceTypesA
Sleep
VirtualProtect
GetTickCount
GetCommandLineA
GetDiskFreeSpaceExW
ReleaseMutex
GetModuleHandleA
GetExitCodeProcess
GetDriveTypeA
LoadLibraryExW
GetComputerNameA
FindClose
SetLastError
TlsGetValue
CreateMutexA
CloseHandle
GetLastError

shell32

DuplicateIcon
ShellMessageBoxA
DragFinish
DragAcceptFiles
SHFree
SHGetSettings
ExtractIconA
SHGetMalloc
SHGetDiskFreeSpaceA
DragQueryFileA
StrChrA
DllUnregisterServer
ShellAboutA

printui

vQueueCreate
vPrinterPropPages
bPrinterSetup
bFolderGetPrinter
PnPInterface

user32

MessageBoxA

Sections

.text
Size: 1024B - Virtual size: 620B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ