97f70c8b42db8f6a15f4d05dd63a06bf | Triage

Sharing

General

Target

97f70c8b42db8f6a15f4d05dd63a06bf
Size

27KB
MD5

97f70c8b42db8f6a15f4d05dd63a06bf
SHA1

c7908304058948c9e64fe250fdddd133e0f20445
SHA256

ae848104204a59a3c85ce408be315dc2f46d0d6f3fe45c730d5fce27f7306fcf
SHA512

20353c5ad0c5189244e393db86bec9977afae46e0b81b656ceccc4008a81c1c76ad1981cea31a63dfbd39b02d2e2c4319f366ec2838e337b5d060a86bf55f3b0
SSDEEP

384:33wIA7GjPE6nnP9TDWsKAkk/fG8+ldJP+0JSfgyz2:HwIA7Q7tDUAdnedJVSfgl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
97f70c8b42db8f6a15f4d05dd63a06bf

Files

97f70c8b42db8f6a15f4d05dd63a06bf
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

WndProc

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qnk
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE