66e6d3b43ec238c34b8833a962adac0b | Triage

Sharing

General

Target

66e6d3b43ec238c34b8833a962adac0b
Size

65KB
MD5

66e6d3b43ec238c34b8833a962adac0b
SHA1

2c6c313df6cdc0c45255567edb8934183db6f459
SHA256

db282d258ef3e79ee1cb0cc4dd96e57e7a4133267448b58c2cf4804d91f6f818
SHA512

4679803d1f107355b3367369d052ad2c31396e495410f89eb33d28c2655b2ece974786e340598353d9ee85938ff8e2940bc8b4deadc2b3fbd55d631f1345b4f7
SSDEEP

1536:s8MGSePDu/Y61Zd+GO3wDIhoVE3T4eCo3yb51f/4ADqF86jp7u:s8MGSePy/L1ZdYAQD7vyb51f/HYQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66e6d3b43ec238c34b8833a962adac0b

Files

66e6d3b43ec238c34b8833a962adac0b
.exe windows:4 windows x86 arch:x86

5e53be22baee17c8ecbe5c3a74868cab

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
ExitProcess
GetCommandLineA
GetModuleFileNameA
GetModuleHandleA
GetVersionExA
GlobalMemoryStatus
HeapAlloc
HeapCreate
SetEvent
TlsSetValue

advapi32

QueryAllTracesA

ole32

CoTaskMemFree
IIDFromString
IsAccelerator
IsEqualGUID
IsValidInterface

setupapi

SetupDiLoadClassIcon
SetupDiGetDeviceInstanceIdW

olepro32

OleLoadPicture
OleCreatePropertyFrame
OleCreateFontIndirect
OleCreatePictureIndirect

user32

GetMessageTime
GetThreadDesktop
MessageBoxW
OemToCharW
GetAncestor

Sections

.text
Size: 53KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ