70de1f4ab66fa4e7cc86e5fa01c084a5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

70de1f4ab66fa4e7cc86e5fa01c084a5
Size

382KB
MD5

70de1f4ab66fa4e7cc86e5fa01c084a5
SHA1

cbcc7119831f240113bfc395f8596e0bfe78822a
SHA256

20947a7fc38029d998aa6138beee4834de48d13933fc93b2bb51123806bafb59
SHA512

6fa27f4eff8c1bb6238ced0415d5b0342c20b2c5474f1282dccd08b14b79ee521a04eb45ab6adcbb33bc0a0cdd3f1ce245dfc2c2acc814eec8c7cf1931b5e574
SSDEEP

6144:VE8Bp9ad1E6dqi+KNDe5c4bFX2Jy2cvxXWpD9d3334BkZnkPH1rd3Q28FSpDlwR5:VSEyzfcvxWd3334BkZnkPv3QhSpDmRp7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
70de1f4ab66fa4e7cc86e5fa01c084a5

Files

70de1f4ab66fa4e7cc86e5fa01c084a5
.exe windows:4 windows x86 arch:x86

65b6862e9898b195f4ef7a1685fd82dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

msvcrt

memset

comctl32

InitCommonControls

user32

MessageBoxA

shell32

ShellExecuteExA

ole32

CoInitialize

Sections

.
Size: 7KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 1024B - Virtual size: 700B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE