8961f39895acc3cdec56f7b9666e5899 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8961f39895acc3cdec56f7b9666e5899
Size

59KB
MD5

8961f39895acc3cdec56f7b9666e5899
SHA1

e155ab79a4796599a6f8aeff9886bb96b82431ac
SHA256

a3464593213819811b82a174d49dc5574bd0cde4123744bf2f94efc452bad208
SHA512

dc3d2fd5c786e9a07e512cfe0469bb922f479773b2667690020409ab97ae6b96bb6816408596f3268564ed77582490dcaa43ac397d9f4f14fe5b1edc08830a31
SSDEEP

1536:KJKeK+fWnUw4xTa5pHhUpX0jAon2sXHCokc:KJInh4ccC2si

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8961f39895acc3cdec56f7b9666e5899

Files

8961f39895acc3cdec56f7b9666e5899
.exe windows:4 windows x86 arch:x86

5a8492fe97a169f80b230639464fb990

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleMode
GetCommandLineA
GetFileSize
DeleteAtom

user32

GetWindowTextA
CloseWindow
DrawIcon

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 49B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 314B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ