48553ed19964f8ef0f8072424653e046 | Triage

Sharing

General

Target

48553ed19964f8ef0f8072424653e046
Size

24KB
MD5

48553ed19964f8ef0f8072424653e046
SHA1

644e49e86efb236565d33ee4922eb56848f3c391
SHA256

d68285463b028075201651b02a73bb741f52f695b45b89960c16da4143848e50
SHA512

b3a3b0054bf677b74066cb1031922192314bd63e882a5e376b777d83e0f7840ff6135b445bae9f9a292d9cfddbfbe180a5512a90d8715b19d0688f39af134561
SSDEEP

768:22NHPld2Bar/n2vSNte8hbckbuitgu7mtN7EHWH:RNvp/2vMe8+muugamX7bH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
48553ed19964f8ef0f8072424653e046

Files

48553ed19964f8ef0f8072424653e046
.exe windows:4 windows x86 arch:x86

09d0478591d4f788cb3e5ea416c25237

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

Sections

.text
Size: 20KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE