aac67d59665cc6d2290171fbe133ba2c | Triage

Sharing

General

Target

aac67d59665cc6d2290171fbe133ba2c
Size

71KB
MD5

aac67d59665cc6d2290171fbe133ba2c
SHA1

6a67eb5a5aea0fbb5f4d985c49e46549c69ea4ad
SHA256

a8808d3032b8039b95d0e48fa0d93f79cc7b6fcaeb201014c35bfda5ab1a4960
SHA512

b80f374a9221316c027ddb0d4e3427391212817f618763f27fbbd4abe3a29da80849b0fca9d006d9e2d46e5882ece1899ec61d74e4006640d429e047da541ff8
SSDEEP

1536:jZuyuG/Q6RHKi9naChi3tYmLKjwfjvGmKAhY52FwMkJlZXBF7eq8IR:VutG/Q6plhidtujwfjvGmKyYIcUq8u

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aac67d59665cc6d2290171fbe133ba2c

Files

aac67d59665cc6d2290171fbe133ba2c
.exe windows:4 windows x86 arch:x86

812648e0cb448422147c5ddb2b4b19aa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
ExitProcess
GetModuleHandleA

msvcrt

_controlfp

advapi32

RegCloseKey

shell32

ShellExecuteA

Sections

pec1
Size: 2KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE