48125b2f57a482083ecdf7d3aafbcbe7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

48125b2f57a482083ecdf7d3aafbcbe7
Size

3KB
MD5

48125b2f57a482083ecdf7d3aafbcbe7
SHA1

03169651b9a83bd359693985e373bab7d70cad95
SHA256

d90cdae27153bdca149e2671c96d8c779af33487d48d37df616bdb9164da5abf
SHA512

54b20fadce2339e5ff7443d011956343491fbd53b9e300977d869bcf1d79da4af5903df2c4aa5cf1ceeb4479a92dc4e5d13c99d14f968783eb332d0d22e7aeb3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
48125b2f57a482083ecdf7d3aafbcbe7

Files

48125b2f57a482083ecdf7d3aafbcbe7
.exe windows:4 windows x86 arch:x86

4c797d45796c6b61047ef0fad9ff7913

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

WSAStartup

kernel32

lstrcpyA
GetCommandLineA
ExitProcess
HeapAlloc
GetProcessHeap
lstrlenA

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 989B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE