aab55e2b0ac8a239215efc22a6fdcf97 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aab55e2b0ac8a239215efc22a6fdcf97
Size

736KB
MD5

aab55e2b0ac8a239215efc22a6fdcf97
SHA1

77550c07e8370fe670fc83a8ba2f50fbe71e86e8
SHA256

e16aab905443bf3edd68da2a4bc608c3c39780084425584ab0a46b05722b9607
SHA512

fffcc230cf8728a8d8cf6b367eec47c06a6f757e2f98a366aa1d28febddc57be45489e856cbb52c7894af66cb13e66203daeb0637611817954d9d33bcc0c6382
SSDEEP

12288:9BV4m2NVR13gIAKcupRzx0a1bCkuA6twlSyz9PitPfqG38IuykPvH:9vJ2F13dAK9PxVCkuzXfqG38IOvH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aab55e2b0ac8a239215efc22a6fdcf97

Files

aab55e2b0ac8a239215efc22a6fdcf97
.exe windows:4 windows x86 arch:x86

613bc8dd3a2a7acaace062ab18b38640

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
lstrcpy
VirtualProtect
ExitProcess

comctl32

InitCommonControls

Sections

Size: - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��
Size: - Virtual size: 724KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE

��
Size: 588KB - Virtual size: 585KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��
Size: 4KB - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ