42e86bd3bda9c2e3facb2b3478ca607c | Triage

Sharing

General

Target

42e86bd3bda9c2e3facb2b3478ca607c
Size

17KB
MD5

42e86bd3bda9c2e3facb2b3478ca607c
SHA1

c63e22fe8331e87d0695d692ce552b2584d80524
SHA256

e9cbe4d31b8af13b4dc3df998d4f8fc004c2d1166c553a6a06ba09cda17d0106
SHA512

0734c5cb6ef897f5cefdae8c0906022991e1aba00863629c4e575852b2c99d53889d2d894e152a8d3f3002623c1ad337af14318dbab103f20922aa8f901a3354
SSDEEP

48:6sAiCtvm1MUzOnBR43cQ0nO+A3ikW5U0GFBVlUUoMIyI11S43lmMOOFBv7v:f1B243v0nOd365U1FBVlhohyq50MOgdD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42e86bd3bda9c2e3facb2b3478ca607c

Files

42e86bd3bda9c2e3facb2b3478ca607c
.exe windows:4 windows x86 arch:x86

6e34b5f8b2e6f26fd0ba4cd3a7115dc4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDCEx

kernel32

CreateThread
ExitProcess
GetAtomNameW
GetLastError
Sleep
WaitForSingleObject

gdi32

EnumFontsW

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 320B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ