b40e97fbee096451d0e959f9ba410435 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b40e97fbee096451d0e959f9ba410435
Size

161KB
MD5

b40e97fbee096451d0e959f9ba410435
SHA1

fc8ef6210dbc8d6816a9ad9bbe46754dc8dc009a
SHA256

2d1095c4c05b1b02af3c64024c5c80476d4bb3718d5ca29024b3ef51978a7828
SHA512

8d32032eb7e38eb80e1eaf4b68bbe7d5acdae458bf729c9d39e8525fb8afd0b8557287367e835c78edf3566f217a5cd4428637eea3d80b9afeb8bb7c95f66733
SSDEEP

3072:OCKomy45ZgzoI7h+aS1G+cqv/CAKqDhzsPWBWW7hetY:N4rgzo0naG+cqvbKxWBWW7h5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b40e97fbee096451d0e959f9ba410435

Files

b40e97fbee096451d0e959f9ba410435
.exe windows:4 windows x86 arch:x86

8afbf9211984274dc7a21b630ecae242

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
GetTickCount
HeapAlloc
ExitProcess
GetStartupInfoA
GetCommandLineA
GetProcessHeap

user32

MessageBoxA

Sections

.SCPACK
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.TEXRT
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.DATA
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.newIID
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.newIID
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE