4f2fa48d3dbe55745c5beee467cd4def | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4f2fa48d3dbe55745c5beee467cd4def
Size

7KB
MD5

4f2fa48d3dbe55745c5beee467cd4def
SHA1

fbd2dd6d8e831361c3fe0e7244b7ab98d50b096f
SHA256

be9e5d440d05799eb94e244488a7fb1276866f8a17b4c7f77ae0c232862a1682
SHA512

59363c4d0a8270a37450fc28dd347441b3c03641db9b8d097e2664255ee5812aea39f5300a7c7af5384056c2cf9391a7a5f7dad4dd57ee60a36c084403bb7da6
SSDEEP

192:ldw+gFIHqsCUVc6QrORwvwLbJcPwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwl:3ZhHqsC56uORwvwLlmwwwwwwwwwwwwws

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4f2fa48d3dbe55745c5beee467cd4def

Files

4f2fa48d3dbe55745c5beee467cd4def
.exe windows:1 windows x86 arch:x86

8f65a0ab8b3c92a17c99207f83157758

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

DeleteUrlCacheContainerA
DeleteUrlCacheContainerW
FreeUrlCacheSpaceA
ForceNexusLookupExW
FtpPutFileA
DeleteUrlCacheContainerA
DeleteUrlCacheContainerW
FreeUrlCacheSpaceA
ForceNexusLookupExW
FtpPutFileA

user32

AnyPopup
CheckMenuItem
CheckMenuRadioItem
CloseWindow
CopyRect
CreateIcon
DragDetect
DrawEdge
EndPaint

kernel32

CloseHandle
ExitProcess
TerminateProcess
CreateFileA

Sections

.text
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 4B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 744B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE