5671ddc3c7be68162d4440328f9694cb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5671ddc3c7be68162d4440328f9694cb
Size

8KB
MD5

5671ddc3c7be68162d4440328f9694cb
SHA1

71381c90714583585161e70b2dfc9eb66b845bda
SHA256

8ba67af0cda3238094b5cfdcaf7b47bb4788ac30e6803b32a388bcd456bb3daf
SHA512

bded69e2433a974c2f7885c4e2ca1e42993aa5941d7fd029d1e3ac2115213c65793b577b3fe120ee57afaea855697c935b21693a04f1b73d43b37dd65d1dccb5
SSDEEP

192:O8nuaiJWbE86UewTcqfB87pP1/Iqr9BKnd:OSuai8bE8UwTp27/g3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5671ddc3c7be68162d4440328f9694cb

Files

5671ddc3c7be68162d4440328f9694cb
.exe windows:4 windows x86 arch:x86

65c721f2eb2ab0309d5fcf06bdaf2d2a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetAtomNameA

user32

GetSystemMetrics

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ