fca39d5f3519c8d01aec8a8c0aec3166dd335c3a70a2e56e9882a257b314036e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fca39d5f3519c8d01aec8a8c0aec3166dd335c3a70a2e56e9882a257b314036e
Size

981KB
MD5

999c5a7d68c1372109061faa41597975
SHA1

df3ef4d873c75d7d49e826f077e0ca7780dcb08d
SHA256

fca39d5f3519c8d01aec8a8c0aec3166dd335c3a70a2e56e9882a257b314036e
SHA512

e1d1c068e2caf2e827955d4831063be92d0a832770ad3cee92cf7f526970af61b717ea78f1c43addc8b586488004b0e647ea06841f43ab5e226b7abe414d7882
SSDEEP

12288:usdJuE/dTsjINYQbXkHulhVoTgNjKh0wd/DsKSW+9qugiDKF0us3Psn1sLO:nJnlsbEfQeWhpd4Kd+9LfESi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fca39d5f3519c8d01aec8a8c0aec3166dd335c3a70a2e56e9882a257b314036e

Files

fca39d5f3519c8d01aec8a8c0aec3166dd335c3a70a2e56e9882a257b314036e
.exe windows:5 windows x86 arch:x86

fdbfec85672f73d2a4d49635454936d4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
LoadLibraryA
ExitProcess

user32

MessageBoxA

Sections

.text
Size: 375KB - Virtual size: 687KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 311KB - Virtual size: 312KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.perplex
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE