99dd2bc93598f8af2472675803f1c39d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

99dd2bc93598f8af2472675803f1c39d
Size

36KB
MD5

99dd2bc93598f8af2472675803f1c39d
SHA1

907cebc364733dc13a98ed6e12a7e296aa501bf8
SHA256

8d3c4e9bb6b6307146471947ac22d8cc753e1ec12d7ba98c811fb438e49189b3
SHA512

c6960ca7e169427f736b4b31acc3740b79c34d1e84aaeaa5348084b7c62ffd9b15f9c64498198fef299bfaadf60b38b84fc41204a9c6852c6bd4ead6b1f0da4e
SSDEEP

768:qYLalMGmyHDEOss13FqyXOxSEWxB1v8Fau6dIPpI5Qks:qlNmyHDlLWYGSEWxKwIPpFks

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
99dd2bc93598f8af2472675803f1c39d

Files

99dd2bc93598f8af2472675803f1c39d
.exe windows:4 windows x86 arch:x86

6c8526847db95a2f5cc5659056c4f00b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GlobalAlloc
GlobalFree
GetLastError
VirtualAlloc
VirtualFree
ExitProcess
CreateFileA
LoadLibraryA
CloseHandle

user32

SendNotifyMessageA

advapi32

RegCreateKeyExA
RegSetValueExA
RegCloseKey

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 478B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE