66835f67f79c3aba5c90bb53ad53bc22 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

66835f67f79c3aba5c90bb53ad53bc22
Size

24KB
MD5

66835f67f79c3aba5c90bb53ad53bc22
SHA1

a23aed3fee107d650c4b51394336a7dfafe7df21
SHA256

bdee1eb7b5d9fa19c38714ff9d6f77187bdef32440538e98b669b74216caa6fa
SHA512

a144911e99e77f85cbbaa4e2cb7c33c8b1bbfb9a9590df474fc3263b5ab8b7109caede8d87a4839f93daab730bbdc028e3ebf7ce3c7cc44df57318567aea3df4
SSDEEP

384:RMbsDuFvnTVypfTLEwfrCmcZrKugABn8htueAlrnfz09u:CbsDuFvnTVifTowrdC8DIxfw9u

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66835f67f79c3aba5c90bb53ad53bc22

Files

66835f67f79c3aba5c90bb53ad53bc22
.exe windows:4 windows x86 arch:x86

ee94fee6d96573394df1ccff29966ad9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_tell
_rotr
_tzset
_umask
_spawnl
_stat64

kernel32

GetNextVDMCommand
GetDriveTypeA
GetStdHandle
GetSystemInfo
GetVersion
GlobalAlloc

Sections

.text
Size: 13KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE