ab48b38408ccbc46757c05dfbc33c243 | Triage

Sharing

General

Target

ab48b38408ccbc46757c05dfbc33c243
Size

16KB
MD5

ab48b38408ccbc46757c05dfbc33c243
SHA1

ddf3941455fb45d8a2f6bd9864c15acdc3e8c57f
SHA256

62d55577cbc6c9b0cdcf4765ac78f2a6130a9cc8f6dbf50a9857eafbdf9ef359
SHA512

4c6592c258201f04da0200c57ccd696a3bc5c2727bb188b6ad00b46724408c2c9ce10d9bc44af2dd4a87c2f0aaacbe1599f051eb404a3b6c133a645df8feb02a
SSDEEP

48:6FsZrEGoMudmGvy5aei2Co7xXBANtnYNnvamoz4IFBq7:a8QGomGv+ri2H9iNZo3oz4QQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ab48b38408ccbc46757c05dfbc33c243

Files

ab48b38408ccbc46757c05dfbc33c243
.exe windows:4 windows x86 arch:x86

75425eba3977a336dc6c3f1c3bcbbf37

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDCEx

kernel32

CreateThread
ExitProcess
GetLastError
Sleep
WaitForSingleObject

gdi32

EnumFontsW

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 320B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ