40a10e73c199023e516fba2e622599b7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

40a10e73c199023e516fba2e622599b7
Size

538KB
MD5

40a10e73c199023e516fba2e622599b7
SHA1

1a644654296caa5a08fef1ca5e401884c87cdec2
SHA256

18bee63505ac0b1d5f490a410046e1b632d922fdc5344036e0cb66f66d3daab8
SHA512

1c0d70e386e81ee915af432124416c18f95c2954a3c0001e09c3df97fae8fe4e5c7c1c9fd75375476029e38e34116963a3d2f21b1da09d31157fb5a610bfc6bc
SSDEEP

12288:OynutODzC9oOYvS/AYSgQ+plW/SPm7WA5xB6MWdeoUeDfiIB2:OQyODzCeS4YZploSPcx5xgMnoUeDfiu2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40a10e73c199023e516fba2e622599b7

Files

40a10e73c199023e516fba2e622599b7
.exe windows:4 windows x86 arch:x86

1c372311534116eeffdf56f3f6c69c5c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
ExitProcess
GetProcAddress

user32

wsprintfA
MessageBoxA

Sections

.text
Size: 27KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 473KB - Virtual size: 876KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nPack
Size: 8KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE