74764c8591ee28fabb712527f26058a1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

74764c8591ee28fabb712527f26058a1
Size

95KB
MD5

74764c8591ee28fabb712527f26058a1
SHA1

d03b14b88bd44bd61d1ee7f00f7144c257365477
SHA256

c16457e23f4c2568b161a293e0528d7195c026f1f4c8c4b7836cba12a13c8d5d
SHA512

5eccf720004dfa897aa965c3d1afc85b0a0e52ef4dff7f1b044d4ba5f486dc09eb094958e990c33b23f07b16c6097ca015569e9737ef7e3da9b53579f84b9bb5
SSDEEP

1536:EoRHGm0QySVr9DCBDrLoh/n2uTx8h+CGu+cEDraqJCVLZ9uV0+GYe:Eotd0QySVrZknei/G7vDWDVLZ980P9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74764c8591ee28fabb712527f26058a1

Files

74764c8591ee28fabb712527f26058a1
.exe windows:4 windows x86 arch:x86

9c8decf3582072f6edfc385a689f44f4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateDirectoryA
CreateFileA
DeleteFileA
ExitProcess
FreeLibrary
GetCommandLineA
GetFileTime
GetModuleHandleA
GetProcAddress
GetSystemDirectoryA
GetTempPathA
GetWindowsDirectoryA
LoadLibraryA
lstrcatA
lstrcmpiA
RemoveDirectoryA
SetFileTime
VirtualAlloc
VirtualFree
WriteFile

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE