51986b6834f104be26c1768b03c2a443 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

51986b6834f104be26c1768b03c2a443
Size

7KB
MD5

51986b6834f104be26c1768b03c2a443
SHA1

2b8daf5e663dfd05eb2836b083dd7acfc513481a
SHA256

dc3fec798630d0658eb04d09997a4f54753263f6a8bf71a96f1f700809c6fd8d
SHA512

02deaf9615df7c643221b5a0fc4dddf23b24bfa45e0ea7b51d0caad0e71888f213e278f42cc1d3fe004fd7dc233f2962854ccfadb88c37902cb8d936cce69dd4
SSDEEP

192:mzB0tGYFO/ETKb81jolm4CeWObcwBSoej0x0MD6iOuTj8L:m7wPTK8l4CacdVj0x0Jh6jy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
51986b6834f104be26c1768b03c2a443

Files

51986b6834f104be26c1768b03c2a443
.exe windows:4 windows x86 arch:x86

a6a2981b62f118e69e748b2171d3146d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
VirtualAlloc
VirtualProtect
VirtualFree

ws2_32

connect

msvcrt

_itoa

user32

GetForegroundWindow

advapi32

RegEnumValueA

shell32

ShellExecuteA

oleaut32

GetErrorInfo

Sections

.dfg
Size: - Virtual size: 236KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dfg
Size: 54KB - Virtual size: 56KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE