454a3c09220479086f83191720c05108 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

454a3c09220479086f83191720c05108
Size

132KB
MD5

454a3c09220479086f83191720c05108
SHA1

7b45b4d4e172b06619fb70298cf96bfd61c775a3
SHA256

1889fcc20115f0ca4d52acd5e20951a7fd059202ae4ca71d89954b61714c4a20
SHA512

3505fc69c870e83b0420c2fadcebf12b4f52b9a4b2703c56d2c1ce11bf2fde006c67cd59c3e8482831cfd4dfb36b45b7ca523af89ccfd7953cb01a0eaf89152a
SSDEEP

3072:QhKUCvs361XeYBVKG5bzyvmpRM6+ZBJ+Z:ZUmsKhXPHU6+ZG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
454a3c09220479086f83191720c05108

Files

454a3c09220479086f83191720c05108
.exe windows:4 windows x86 arch:x86

8f0a94096e77019349d41a797e0546d1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalSize
MapViewOfFile
HeapSummary
SetConsoleActiveScreenBuffer
InterlockedDecrement
SetConsoleTextAttribute
RequestWakeupLatency
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

PESEC0
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

PESEC1
Size: - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 4KB - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ