b46d787cf92dcc4c41ae944d636c1d3f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b46d787cf92dcc4c41ae944d636c1d3f
Size

56KB
MD5

b46d787cf92dcc4c41ae944d636c1d3f
SHA1

f199827691705f4df4161c59012d24f6fb63fffc
SHA256

92594df9f3ea5db0674a04e4374f84aea2426edd684cc8f5e7511a0bec0b3652
SHA512

b8e06c6a1448d06d440fb0267cb584df499ee8938cb87164458f4804bc9b41cf7ed5f1cc358a76be5d48b5c433cec2f3665e64c0c3a8a93ff31c95655331830f
SSDEEP

1536:CnnUX4wCVpebNw4ERXbXVipbOilpou/yk:Cn64wCqhw4EZblWFpvy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b46d787cf92dcc4c41ae944d636c1d3f

Files

b46d787cf92dcc4c41ae944d636c1d3f
.exe windows:4 windows x86 arch:x86

4c71388e384fa8d26ecec1f0da9a7e67

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

urlmon

URLDownloadToCacheFileA
ReleaseBindInfo
CompareSecurityIds
DllRegisterServerEx

ntdll

LdrShutdownThread
ZwSetInformationProcess
KiUserCallbackDispatcher
LdrLockLoaderLock

Sections

.text
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE