a45ba58c712240389c225cdc422928f8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a45ba58c712240389c225cdc422928f8
Size

128KB
MD5

a45ba58c712240389c225cdc422928f8
SHA1

66d23762df1b2f49b5c2226fc3064bd4c18d33cb
SHA256

d64e73976d7e8bc7110e704900141ca3cde3b63559689257fe3a848133783c84
SHA512

abb11e4e7f351e422b9ddab6613e8b60566d45d0bd4bd50bffdc079300c3bca56612c4814583a3945f3511e82deeb3e979e11411b78f9c0c643072f760a208dc
SSDEEP

1536:kU7rA6XuVAn36hwRncfK0UUVPu5Rt94dK/JPxEE6JmA93aKibNYOeZeDBaK:k1J8hRruu5RTbxpEESlaKJdYDBT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a45ba58c712240389c225cdc422928f8

Files

a45ba58c712240389c225cdc422928f8
.exe windows:4 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

g6jcxyig
Size: - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.9zbmlvu
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ygzbkx1o
Size: - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

kscf2cak
Size: 106KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

2bk74iaf
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ