801bb7c905cf9a54f7c299baa74acd8c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

801bb7c905cf9a54f7c299baa74acd8c
Size

56KB
MD5

801bb7c905cf9a54f7c299baa74acd8c
SHA1

89de5bd5dbb89f86a26c93f626c43590085c22fd
SHA256

ac15e48e5f448f73e7a9957ceea82e10359da505ecf59773f7902a885e8a39a4
SHA512

a99644762d17f2d7f10515fe69ffc6a32f8e2f2687fd9f2e9020bfd2211459af8bfb915113fc886887eabdca8264fd995499736f309e98a9d5aad5b47f05cf5c
SSDEEP

1536:FbThlZ+O+ZlGIbUIQ45cGKQFxhu35Okc:FfR12cGK6xhY3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
801bb7c905cf9a54f7c299baa74acd8c

Files

801bb7c905cf9a54f7c299baa74acd8c
.exe windows:4 windows x86 arch:x86

0833c5563d470aaec3a26973814bab6d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindAtomA
ReadFile

user32

DrawTextA
LoadCursorA
CopyImage

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 57B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 207B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ