67d367bc9ee39808f43c49bc10a824eb | Triage

Sharing

General

Target

67d367bc9ee39808f43c49bc10a824eb
Size

29KB
MD5

67d367bc9ee39808f43c49bc10a824eb
SHA1

e0f5722eb1f145a6faccd4186fcdb529b6373388
SHA256

0dc1858d8a83eb6cd4fb768d330b3d5872315db5c4a8486983eb64093c3df314
SHA512

b052b179d3a9fd5c7ff9366b9ae7f7e2391c9901299057677e593df20950ac02c107132ec986aeffef0322f0085e9af51dfcd2314dfec2c2ba5bfd2a23095a51
SSDEEP

384:TG7qKuhKZUPX27xYiVY5XUIgNrMBz5aJGOHn1YynPCn+brkOM3kdKG:TGDuiVY5X4rMBz4GOHn1YyPCn+cZkcG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
67d367bc9ee39808f43c49bc10a824eb

Files

67d367bc9ee39808f43c49bc10a824eb
.exe windows:1 windows x86 arch:x86

a15320bd9c2aab1aaf8b0ddc566e1fbf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetCloseHandle
InternetGetConnectedState
InternetOpenA

wsock32

WSACleanup
WSAStartup
closesocket
connect
gethostbyname
htons
recv
send
socket

kernel32

GetComputerNameA
GetSystemDirectoryA
CopyFileA
RtlUnwind
Sleep
WinExec

user32

MessageBoxA
wsprintfA

advapi32

GetUserNameA
RegCloseKey
RegCreateKeyA
RegSetValueExA

crtdll

__GetMainArgs
_stricmp
exit
fclose
fopen
fputs
memset
raise
signal
strcpy
strlen
time

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88B - Virtual size: 88B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 552B - Virtual size: 552B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE