5726f6e691bb18dfc822c2f0e32206e7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5726f6e691bb18dfc822c2f0e32206e7
Size

49KB
MD5

5726f6e691bb18dfc822c2f0e32206e7
SHA1

25577e64c5c4ba2b07a2f2dfeb15de5ed5dbfcce
SHA256

b26d4e0da58589cb18e8b7392c345149f6405844fc6dbcfa4a07914a238d9ebe
SHA512

6502b2bc313f751ac9acf56ec4ed9cda82c05c0c39074c9e49ee8e93557bf58439b98f4162d820681bd6b968d84d2f249e913465a250fcdd424273fe5cb08bf8
SSDEEP

384:uBj1FufN/hzcWGfeImfEtj4YwG4+Xfb/Yh7NSUZmOKcc9UW2k:4QN/J+GIYK/w1iKxSb5Z9UWn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5726f6e691bb18dfc822c2f0e32206e7

Files

5726f6e691bb18dfc822c2f0e32206e7
.exe windows:4 windows x86 arch:x86

90672c2e8c3dd7ca44f38a8c3205cef3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
lstrcpyA
CloseHandle
CreateFileA
FreeLibrary
GetWindowsDirectoryA
LoadLibraryA
Sleep
WriteFile
lstrcatA

advapi32

RegCreateKeyA
RegQueryValueExA
RegSetValueExA
RegCloseKey

ole32

StringFromCLSID
CoCreateGuid

user32

PostQuitMessage

Sections

.lcc
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avp
Size: 512B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE