memes | Triage

Sharing

General

Target

memes
Size

7.9MB
MD5

a52e04619b3f5d740c980b005376e0b8
SHA1

75ab5d9deb76e15cf8208756e60ab75abd22da94
SHA256

712c597fb2b0f25a262dd7a87f3b68eeaae4f9f1813245795e3190d74ac4351a
SHA512

6e81e4c849f57656e82ea41580d61a102d20b37c23222dc4fa29d27bd161534b8bb355dfd0deb55d79a97f7547878b32fb371ded1f8d94b818252f40c3161c79
SSDEEP

196608:YtI8DzOmW3omKB+yKCYrp5SwOOYOZKBuBtz:YtPl+byKX1gwJEA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
memes

Files

memes
.exe windows:1 windows x86 arch:x86

140094f13383e9ae168c4b35b6af3356

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
ExitProcess
GetComputerNameA
GetModuleFileNameA
GetModuleHandleW
GetProcAddress
SetErrorMode
Sleep
VirtualAllocExNuma

shlwapi

PathFindFileNameA

msvcrt

malloc
free
memset
strcmp
_strcmpi
strcpy

Sections

.text
Size: 7.9MB - Virtual size: 7.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ