50ef7d425f52d77b7a1023ecbecf231f | Triage

Sharing

General

Target

50ef7d425f52d77b7a1023ecbecf231f
Size

132KB
MD5

50ef7d425f52d77b7a1023ecbecf231f
SHA1

131cc8b40a101615ad1de4eaa9bd7b38aa246252
SHA256

ed5c9f3f5b682957599c74669cf2c35175327d39745f5927ce409f21a7ed6241
SHA512

e0ae0634994de74c2e787d9ded2c58ac79d68cb23a1a11b13ee16ff6b7dcf33978748c59e4317bd41693a6419b26e89658c15d4b3375203cc4569236aba98e71
SSDEEP

3072:k/WSeJqtsZ4Iz49HSl6FZuKHe1G1ESMHmZzXfP:rSsqW6IEd2CMKKGFMG9vP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
50ef7d425f52d77b7a1023ecbecf231f

Files

50ef7d425f52d77b7a1023ecbecf231f
.exe windows:4 windows x86 arch:x86

8959c38298d13e99033cbd4b79da0f7b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ClearCommError
GetConsoleAliasExesA
InterlockedExchangeAdd
GetThreadContext
ResetWriteWatch
DeleteFileA
SetConsoleMenuClose
MapUserPhysicalPages
UnhandledExceptionFilter
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

PESEC0
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

PESEC1
Size: - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ