5209fc0b123a14bf07d854f7956c1bec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5209fc0b123a14bf07d854f7956c1bec
Size

22KB
MD5

5209fc0b123a14bf07d854f7956c1bec
SHA1

9595e56f81150d4f016e4f3cc6d2161acb9e2b16
SHA256

f13bc1dcad203183e57a30894b9a18ee8a07d2d6416122a915df910e0d581cea
SHA512

4162a62c0c09e5a4f38fc0260ed483d3d8f21efa771e1bc025216442a78044ed16382513e505e16ca63cdfef7977968f3d3163cdd4e02b581cc4c67fe2699110
SSDEEP

384:tURwkl7yLvH6BzXTc/3Mp7lHHt5bkCGLrgaQS8+px+FUaud6AEWv6oqD2f9v:KRw87wapXTa3Gnt54C00Sjpx+FUa8gqN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5209fc0b123a14bf07d854f7956c1bec

Files

5209fc0b123a14bf07d854f7956c1bec
.exe windows:4 windows x86 arch:x86

39c87c5cea161696eacaa4d7cdc6a324

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

select

kernel32

GetMailslotInfo

user32

MapVirtualKeyExW

gdi32

ExtTextOutW

advapi32

RegCreateKeyW

shell32

ShellAboutW

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ