b54e221a422af9fdaf76e6075aeb9a51 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b54e221a422af9fdaf76e6075aeb9a51
Size

35KB
MD5

b54e221a422af9fdaf76e6075aeb9a51
SHA1

d1aadd5e58df52da893eecb3b5322f190f594519
SHA256

c2652f185ed144536714f21f6f2c10536b83b6708cdb628491a45d8040c833e5
SHA512

966e5d0553f5b191d0be563abb1b9d0276da406f206e1ae16d46a75f679eb723a5bb3e137e334687e61a27f5faf1cd08387b7026f3bd718eac4fc7a9d5da44e8
SSDEEP

768:DUQqyetwtt+jqYQf6qQWnJIVO6ndueYrrgKnc3R/73mBwzPR6cvdA2cr:DFti5AzQ9VvnduegncdnzPR6cvdAr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b54e221a422af9fdaf76e6075aeb9a51

Files

b54e221a422af9fdaf76e6075aeb9a51
.exe windows:4 windows x86 arch:x86

acd9fa3a74cc4c1d92998e6ad62eeb8f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
VirtualAlloc
ExitProcess
GetProcAddress
LoadLibraryExA
GetModuleHandleA
VirtualProtect
GetModuleFileNameA
FreeLibrary
LoadLibraryA

user32

wsprintfA
MessageBoxA

Sections

.data
Size: - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ex_cod
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE