99f5722fd9bfd19259f87a782c7c9249 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

99f5722fd9bfd19259f87a782c7c9249
Size

10KB
MD5

99f5722fd9bfd19259f87a782c7c9249
SHA1

b20b980b780ca1778af591392c8cc22c2841be9e
SHA256

7168978da9b534c3499a9de2de20b6911d4c3b7a697f7136df1955daf629f5d3
SHA512

6a2d97fde6af711a8ca24605a39f69d179739b982bf16065b38ec360bf7fe4c8a846d377eab24a224dc325baed19ce952a507d5397f86af6c72ec0771a0fae0d
SSDEEP

192:L37R5pkiflfV50Bf2lP1oyvFCfpKgOFcfQ9ZuuOFK4fjNjzMz0:XJ/fX5v1tFCf4gOFckOFKN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
99f5722fd9bfd19259f87a782c7c9249

Files

99f5722fd9bfd19259f87a782c7c9249
.exe windows:4 windows x86 arch:x86

cb8248e4fa67624c972cf569430532da

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_adjust_fdiv
__p__commode
__p__fmode
__setusermatherr
_controlfp
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
memset
_except_handler3
strcmp
strlen
malloc
__set_app_type
strcpy

kernel32

GetModuleHandleA
GetProcAddress
LoadLibraryA
FindResourceA
LoadResource
LockResource
OpenMutexA
CreateMutexA
SizeofResource
GetModuleFileNameA
GetStartupInfoA

Sections

.TEXT
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.RDATA
Size: 1024B - Virtual size: 808B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.DATA
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.r"rc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ