64df16756336aca05990d23c075faffe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

64df16756336aca05990d23c075faffe
Size

3.9MB
MD5

64df16756336aca05990d23c075faffe
SHA1

54e069ec56350f0df3a5c811eea5b2d67a4d879f
SHA256

cf7ed5f18b6defd6517021bb5fdd11d7952a05a4604f407b35daef351db3d4a7
SHA512

a63e223f83013a8472ab620169aed1b809cfb39d5621c966796bfb273870e7dc9797e9893da32040f571ca857ed34a3beea687b91b7125c27abb630c6844e4a8
SSDEEP

49152:QwTy2xn5TyKc3s8HvSeQFrkbreBmcFcqMgETTGWVIRe9B3CQAeTPjfhQnYJNz2A2:DTy2xn5e/S7vFMgZRRIN7xtlKJL+xx4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
64df16756336aca05990d23c075faffe

Files

64df16756336aca05990d23c075faffe
.exe windows:5 windows x86 arch:x86

b2bbfd72498e484490baf6aa5cc8858f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

EnumTimeFormatsW
GetModuleHandleA
SetUnhandledExceptionFilter
GetProcAddress
lstrlenW
SetCriticalSectionSpinCount

user32

GetMonitorInfoW

psapi

EmptyWorkingSet

Sections

Z
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

I
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Z
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Z
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Z
Size: 2KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ