9b874064ab37f92f20109a3b0fec7a20 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9b874064ab37f92f20109a3b0fec7a20
Size

6.9MB
MD5

9b874064ab37f92f20109a3b0fec7a20
SHA1

6dc3255e44f11ac6d695b1c25b75526190131f6a
SHA256

850ddb7bde4d6767e486e9fa06a772a1fe533762e44ab340056c1d0f04d7a23f
SHA512

6dd9b852bf979e8322ec3e1708afa07dba7ae487579c65a1bab7f123b1481f1855668529e331186e0c67ebbeb091310e00cf89ea14a572ce35d786aff3f14ddc
SSDEEP

196608:ar6qfR6NGIB72qZjjX882yL7Dd6o9Zxc:aE0U72SjH2E7DwiZa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9b874064ab37f92f20109a3b0fec7a20

Files

9b874064ab37f92f20109a3b0fec7a20
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 5.3MB - Virtual size: 10.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fwstxfnq
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

gkhowjwv
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE