747b84a6975af87e2462a7ca51126f5b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

747b84a6975af87e2462a7ca51126f5b
Size

4KB
MD5

747b84a6975af87e2462a7ca51126f5b
SHA1

f0c74c9272e11119a3d1903d52469de6ac7f07dc
SHA256

2ada1d02717b134694ed38336cf860e0638193a69e5cc6c6d965789c8b5b5a35
SHA512

ab880e2e444fa0cc25d81ad6575e682fc6cc7dcbb1bd6aad140304d47dcffa2c4b58dc334848cddb8a0d2bcd3ce5af769168b11bf4e1474492f91172ef9db9d7
SSDEEP

96:Z1pmB1UCr32K8XOaLz8w/aczTqMy2S/Sqe:tmgfXO81i2TqMy2S/Sqe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
747b84a6975af87e2462a7ca51126f5b

Files

747b84a6975af87e2462a7ca51126f5b
.exe windows:1 windows x86 arch:x86

7fc8a871ff1eb82604471bca09bacb5f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateFileA
ExitProcess
GetEnvironmentVariableA
GetModuleFileNameA
GetProcAddress
GetShortPathNameA
GetSystemDirectoryA
LoadLibraryA
LocalAlloc
WriteFile
lstrcatA
lstrcpyA

shell32

ShellExecuteA

Sections

.flat
Size: 512B - Virtual size: 345B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE