a0b243f3810b4c50e0ef4086a7047bf9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a0b243f3810b4c50e0ef4086a7047bf9
Size

62KB
MD5

a0b243f3810b4c50e0ef4086a7047bf9
SHA1

ce8e9f11dacaf88f84ecfecc99ef5d70d6b94ee8
SHA256

03f777b18f0a4135d65348b2c855f8c192c898bbb884058f5a562f1ab13d83c5
SHA512

f512b3403b3d6a9a11880697492ac0fca92ae929dfe371066261b2506148a8769d7c5505e41730ddc6cf0ed149e50e9e3db6ce0ff98f77684611a9a73084f6d8
SSDEEP

1536:uFZx7hSsIQjGdQbiDIoWxZHJXTFExcDavUxgn8P+PiUFYAMNy:4x7hSUFbiDIbZHJXp40avUxg88kNy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a0b243f3810b4c50e0ef4086a7047bf9

Files

a0b243f3810b4c50e0ef4086a7047bf9
.exe windows:4 windows x86 arch:x86

e1d37ef89ac741e3d72404062396f843

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenWaitableTimerW
WritePrivateProfileStructA
VirtualAllocEx
WritePrivateProfileStringA
ExpungeConsoleCommandHistoryW
SetConsoleCtrlHandler
SetTimerQueueTimer
CloseHandle
PulseEvent
SetCommConfig

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 47KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE