9f0f45fc7cf4672ec21fc3f192ac264dd57e82935abbad5056257345d9fb04ef | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9f0f45fc7cf4672ec21fc3f192ac264dd57e82935abbad5056257345d9fb04ef
Size

1.6MB
MD5

4655e762f46412b69a21aa09a38eb341
SHA1

ef342dd68adb1173c236ca72564cdb09361c1bf1
SHA256

9f0f45fc7cf4672ec21fc3f192ac264dd57e82935abbad5056257345d9fb04ef
SHA512

d209d6ed3563689e4695c76e94de4faafc0b0aace7e161db65d81656b786b5c1072302cb0669493bfaab8c97cfc184a30335d0e1466b8335d7d05d42ba8a945e
SSDEEP

49152:qVSAN1gUwvJoWO9a2ooNmRmYQLLl2zjCSI:q0UDwvaWsa9oNGmTLps0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9f0f45fc7cf4672ec21fc3f192ac264dd57e82935abbad5056257345d9fb04ef

Files

9f0f45fc7cf4672ec21fc3f192ac264dd57e82935abbad5056257345d9fb04ef
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wdwtmlch
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

odcdiclk
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE