99a42e5bbab911549d20bcc4de1f8824 | Triage

Sharing

General

Target

99a42e5bbab911549d20bcc4de1f8824
Size

11KB
MD5

99a42e5bbab911549d20bcc4de1f8824
SHA1

38908f45338cd43eaf0c597549be8beea906aaf8
SHA256

0023a14e203893a41739f00c576b5da1d9d8f75849b57e4a663172e6f025261c
SHA512

7f26077fec3b3cd3b33d8097af676ac7099a0f047c3516bb98464d3304e6e6e66d26a072de17bf39dbfcf1a8c536e63d80e3c530c0b1bb0763cb736454c29205
SSDEEP

48:6TvOC6lzfq1I7Q8Y7qSJKh3fO7YDcUQ7UZBq7:iOC6lbOIsR7qSJKhvOIo4ZQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
99a42e5bbab911549d20bcc4de1f8824

Files

99a42e5bbab911549d20bcc4de1f8824
.exe windows:4 windows x86 arch:x86

75425eba3977a336dc6c3f1c3bcbbf37

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDCEx

kernel32

CreateThread
ExitProcess
GetLastError
Sleep
WaitForSingleObject

gdi32

EnumFontsW

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 320B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ