87bb59af4d9b7cda9793c4d1b69283ae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

87bb59af4d9b7cda9793c4d1b69283ae
Size

452KB
MD5

87bb59af4d9b7cda9793c4d1b69283ae
SHA1

94985087bb8a7693bfdee9595bdaf0c261646471
SHA256

9395d33b23055cb5a38cb1360ddc0fd800481c6e4a35631ecbb7ffb9ec1a10e4
SHA512

880d98c4bc743b9179be14016d73809e6320f148ce390df41bd49f6e6caf20209cf35fcc5ab6816c393a89dd50d60bfb01c76c6b2389f5480a98b0b1cdf786fa
SSDEEP

12288:rwbxa4XR8/b12TeW3l3EY9sdNFsrnXuuV4L4eKZakPKmQ:rwI4B8/b12CWl3EYKLyrnXuswI7Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
87bb59af4d9b7cda9793c4d1b69283ae

Files

87bb59af4d9b7cda9793c4d1b69283ae
.exe windows:4 windows x86 arch:x86

c55d58516ab8b94df1945dd02ca3b318

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

version

VerQueryValueA

gdi32

UnrealizeObject

comctl32

ImageList_SetIconSize

Sections

CODE
Size: 438KB - Virtual size: 5.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE