473c7927e701b5dc2e73235f1c979cc2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

473c7927e701b5dc2e73235f1c979cc2
Size

29KB
MD5

473c7927e701b5dc2e73235f1c979cc2
SHA1

faeb3084580bc1178f48477e977b5a33bd025f8c
SHA256

83c459b4835c30e173fd29b906919a9e8d41d5d1b95805aaa6700460926eba53
SHA512

cdad0d9b25dbda7e59ec3202f0f866ab48cf8b1bf5967c569dd6e61e16d253f996dd398114aac8a437d457165db2c000deb29f66c2f01b78004789a80f335681
SSDEEP

384:1omNVKKPfY0bZ/vnjIQdiVfD4BVTR4Z0RHXN2E7nVYQl:1o8xt/PcQdiBoW2aGVRl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
473c7927e701b5dc2e73235f1c979cc2

Files

473c7927e701b5dc2e73235f1c979cc2
.exe windows:4 windows x86 arch:x86

5dac70094352bd52fe1d33c05d252b7e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glScaled

ntdll

NtCurrentTeb

kernel32

VirtualAlloc
GetCommandLineW
ExitProcess

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ