55113172e9efed8be0bb467c9148cb84 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

55113172e9efed8be0bb467c9148cb84
Size

22KB
MD5

55113172e9efed8be0bb467c9148cb84
SHA1

7aac69f85c97ba8e89c138cedf8fdc7f9e5ffbe6
SHA256

893ca3b430f9db34d9033a293cda8b9bef6e1d300527c092e6dcc9cf0119bee2
SHA512

4a5c7120ec334b5fa53fbfce83737a527b52ae104fa33cdcf9e3a3c75b61c1fc8353c2b1bafb16eaa51c40570e5c65705ae600d46c964160d9cc9165d8512ea9
SSDEEP

384:mej/i/106dLhi7MwIjKwKS4q1RO8cicaAuk27xf6B6WWYqlBw:meLi/1NL47MwIT4v8n79kA8YYMw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55113172e9efed8be0bb467c9148cb84

Files

55113172e9efed8be0bb467c9148cb84
.exe windows:5 windows x86 arch:x86

b8b384c722d9310eebdb0c0fc6f44203

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VerLanguageNameW
FindAtomW
SetComputerNameW
CopyFileExA

user32

DefMDIChildProcW
DlgDirListA

gdi32

CreateMetaFileA
StartDocA
TextOutA
RemoveFontResourceW

Sections

.tls
Size: 17KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.��
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 1024B - Virtual size: 860B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.masm
Size: 512B - Virtual size: 380B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ