99b171d192d84183124990297fd70901 | Triage

Sharing

General

Target

99b171d192d84183124990297fd70901
Size

13KB
MD5

99b171d192d84183124990297fd70901
SHA1

22d2d6f572e6aa4737d3d6ccde0f90c367677a5f
SHA256

94a275f033d810dbc2d21e4a73c19e14bac42c897ecf7780602b2372c87b3d80
SHA512

e466cc6a10e5da481bf8d1cd2841ed2705d5ba58b4e0a5c2d5008970c88dfd5aece79ed2d4edb60ce3a6e9987d4d84c469dfb6ffe7aa423b2f0be638d33a886e
SSDEEP

192:08UHYF8zMDcqRF4XRcssSov5bJsldOyOsUrEmkg6OfYaXKC1iae69:084R6zw+OoBbJsldOylKfYaXDN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
99b171d192d84183124990297fd70901

Files

99b171d192d84183124990297fd70901
.exe windows:4 windows x86 arch:x86

09d0478591d4f788cb3e5ea416c25237

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

Sections

.text
Size: 5KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE