6534b6438c853cf74352b549caaa800e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6534b6438c853cf74352b549caaa800e
Size

24KB
MD5

6534b6438c853cf74352b549caaa800e
SHA1

0ba8b155a42135c89d7a32d22dfab9f98286b51a
SHA256

5c2fb49dce56f005c5f98792830f16610624c62ee60caa767294f18aec031c2f
SHA512

ec9684dc020431f8286b371bd658f5eb7a19bd6d45dcbcf15bb3080c3b6c7fb729b136663e1e297760dd3253760710b0a48e020e66ef98b4e82ec35cf42d9eab
SSDEEP

384:xXZAxnbmeQsWB7oK0GmJqEez4rBoAv/W0QUYUYUYUwIIPkDIMUXoAjULhzY+wj:xXZAps/B7ovrrK3UYUYUYUdIsMMUwLu5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6534b6438c853cf74352b549caaa800e

Files

6534b6438c853cf74352b549caaa800e
.exe windows:4 windows x86 arch:x86

bd358c2318ef5e4d9408f006a7312e0b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GenerateConsoleCtrlEvent
DuplicateHandle
VirtualLock
VirtualAllocEx
LZOpenFileA
VerSetConditionMask

gdi32

GetDeviceGammaRamp
SetDeviceGammaRamp

advapi32

CredFree

opengl32

glTexCoord3f
glAreTexturesResident

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ