70f208afbf1538984574a6850590d067 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

70f208afbf1538984574a6850590d067
Size

50KB
MD5

70f208afbf1538984574a6850590d067
SHA1

7b2d0d31a43d813f556ad2c546dc4c1070b61262
SHA256

c5395d6deb4385a5d4a348d65a5c0eb4ec7291dcc22528ffcbd758e69b70ba84
SHA512

31d97fbbb092611cefc8429b766a0b5b00b3c030a880a598308cdb40c493a5ebf14c04861d090d5511c2af7421bbc6b3ef3d2ceb98d9775c80895d2a35e88102
SSDEEP

768:e2y70joITxJ+zPuPDJZCDCwDzSBWfsPb7TaRoATLFH7S9Ntkw9umJCFgULmsWxAu:xkIFwWnMC8zSUsPbaRNBG9D03AAVeFz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
70f208afbf1538984574a6850590d067

Files

70f208afbf1538984574a6850590d067
.exe windows:4 windows x86 arch:x86

541160bce55bf5030f1053d9ca2f310b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

ExitProcess

Sections

.code
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.code1
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 39KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE