592063cae80095cdad681101b37e3766 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

592063cae80095cdad681101b37e3766
Size

33KB
MD5

592063cae80095cdad681101b37e3766
SHA1

930ac91bfcfc7c3f9b6dd73b098d165a3a71cdc8
SHA256

765c369d0cf5ac4cac0bef9ed26745707fc7b312eb472759255cb468f58f1d49
SHA512

93eff7a69dd819cca1ede18215f1e5c51b2974c65b00b0aaf0aae3ed29af6700f50700631a69847586813d89bb647e8e099106b96474ca7df876803c78bb3852
SSDEEP

768:0VrfKKsfqNKEK3fAveSzVOy6zWZJ4hzBd3Qf9YsoTLwn:0VGFGnKSeS4PiZuhldgffoTLw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
592063cae80095cdad681101b37e3766

Files

592063cae80095cdad681101b37e3766
.exe windows:4 windows x86 arch:x86

92f9ddd2dbb0bffac5fec7c0d2f47fb1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleWindow
CompareFileTime
CopyFileW
CreateThread
DefineDosDeviceW
EnumResourceTypesW
GetCommConfig
GetDateFormatW

msvcrt

_mbccpy
_mbctombb
_mbsdec
_pctype
_snprintf
_snwprintf

shell32

SHLoadOLE
StrStrIA
DuplicateIcon

Sections

.text
Size: 20KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE