48b379cf7fb5ed3e2cb489a015864a55 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

48b379cf7fb5ed3e2cb489a015864a55
Size

16KB
MD5

48b379cf7fb5ed3e2cb489a015864a55
SHA1

0f928590a758bf17b6ba7ebf9931510f77bfaad2
SHA256

93e11d963fbc82aea2992f7403aaad938ec42b0b4f188fc64cc267951b9dfbdd
SHA512

965cc8ac30be98b624cee6b51f9b91bac7509d130af7fe452ae26741f6d086435e68780da3355b5e0d5d19c6e16f520303bf45896ca7539e67eb251bdc99f4bc
SSDEEP

96:oCaneX1zUK1xg2j+ZeFhG6VkQqqz41XiU3cPdaV05pF5i2ib9dzwo+:1x1zUixg2J/SQq+UXiMgpji2w

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
48b379cf7fb5ed3e2cb489a015864a55

Files

48b379cf7fb5ed3e2cb489a015864a55
.exe windows:4 windows x86 arch:x86

a57abddc2ed3cfe602c784775e30a4e2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
Sleep
GetCurrentProcess

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 272B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE