78a252757638162f8eb0047d4dc50f16 | Triage

Sharing

General

Target

78a252757638162f8eb0047d4dc50f16
Size

76KB
MD5

78a252757638162f8eb0047d4dc50f16
SHA1

46773c6b5f2f2b69b07fa2b103ce7774023d006e
SHA256

23e1a09e165a3a4e70c02ec89ec540ee82cd8876f8f1eaee2977fac026e7b8fd
SHA512

e7afb72be0cb062a5f7cce17ab2245c6bb3b90f6b1bee3d88d147ef48e7465fb9726d24ae426d088b841b344e936b20e4cda7a9f1d807b9da6656a07d6876507
SSDEEP

1536:qF2nAz5byGHUmPX7/rzxCkJ8z1H/03yIiah80wg6jEErxTWDTMqhGKYIZTET8x:A2nK2HqnzjAcziay0kjBkMqhGKZTbx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78a252757638162f8eb0047d4dc50f16

Files

78a252757638162f8eb0047d4dc50f16
.exe windows:4 windows x86 arch:x86

1de09b1ccc9a41c0354ab7eddc396f54

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EndUpdateResourceW
TrimVirtualBuffer
TlsFree
GetShortPathNameA
InvalidateConsoleDIBits
UnlockFileEx
SetStdHandle
Process32FirstW
LCMapStringA
InterlockedFlushSList
BaseUpdateAppcompatCache

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE