b62b7ee60c6d560803d3e8e435b47719 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b62b7ee60c6d560803d3e8e435b47719
Size

384KB
MD5

b62b7ee60c6d560803d3e8e435b47719
SHA1

76027fefec4a89f19dede7d1b6a0a4826427bf00
SHA256

e429c2439a8d0c6b8f0c0aaefa498d7206967277d3f90dfafc75489cf618a63f
SHA512

a0e654b792c866453faf8117fd6a0226b37140cc1ad5d20ed61afa4563f454ffda742bbe039bf8f36bddd00a6f3e9151d79e0d28df345639afadf0790a82bbe7
SSDEEP

6144:l1V0zlzE29Y2A8qxbQIMubIsxT9KFWo3QU3HQTheWeupzzshKU:l7SlzEw8x/MQIgT9knXATheWeupzzshK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b62b7ee60c6d560803d3e8e435b47719

Files

b62b7ee60c6d560803d3e8e435b47719
.exe windows:4 windows x86 arch:x86

3d86980cb377fa217ee54f4920d43b9a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
CloseHandle
WriteFile
CreateFileA
LockResource
LoadResource
SizeofResource
FindResourceA
FreeLibrary
GetProcAddress
LoadLibraryExA
lstrcmpiA
DeleteFileA
SetFileAttributesA
lstrcatA
SetThreadPriority
ExitProcess
GetCommandLineA
GetModuleHandleA
lstrcpyA
GetLastError
SetLastError
GetSystemDirectoryA
GetCurrentDirectoryA
CreateDirectoryA
EnumResourceNamesA
SetCurrentDirectoryA
RemoveDirectoryA
lstrlenA
GetStartupInfoA
OpenFile

user32

CharNextA
wsprintfA
MessageBoxA

advapi32

RegOpenKeyExA
RegCloseKey
RegSetValueExA
RegDeleteValueA
RegCreateKeyExA
RegQueryValueExA

ole32

CoInitialize
CoUninitialize

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 368KB - Virtual size: 367KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ