670caf58ce14d383703d95c0352eff41 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

670caf58ce14d383703d95c0352eff41
Size

15KB
MD5

670caf58ce14d383703d95c0352eff41
SHA1

b765bf424f6d89e411e0845b54625a6b7c3a3dec
SHA256

1abc41e5087922d7b28369666295cef07bf33423ad4fa018cde8f847f8ff5b78
SHA512

2d2d6d93bb93a6ed1bb5021493bcc64bfdec32bbe115c0281642807831530dbc2762119cce15ec790a61a2ad2cb111fc252ff962842822ddb1b25012161dc964
SSDEEP

192:fYeB5/EZxAAWzxen0GIPF1OtG4mRFqtVRE8e5ufSRq0tHZrH1nGUG8LifJKMzIDu:fYeBcxAZ8+z3FqtVrJeZRGYifs6cDLt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
670caf58ce14d383703d95c0352eff41

Files

670caf58ce14d383703d95c0352eff41
.exe windows:4 windows x86 arch:x86

06a3a13c623baec8bd908d4d50cc7868

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetFileSize

user32

FindWindowA
CreateWindowExA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ