b937eb56ba5ff3db6a6592bf47282be0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b937eb56ba5ff3db6a6592bf47282be0
Size

1.9MB
MD5

b937eb56ba5ff3db6a6592bf47282be0
SHA1

24d5cfc65fb130e2474b87f66cab34dfb2557e26
SHA256

92ac08d033b38318f587a0fb0539ab9f02b005960949c64785ad40b583a1efbc
SHA512

7594f06e61ba5d531b3b070b3a37eab2989db8e2c9f3b77fc71a4c1a409f488c5d195c5b2d847930b923e201f850d7521fdd5741cd06a443e0cc60e4be3fbb59
SSDEEP

49152:lAfjlqGN7TNlREWnBUcISOQOB4MvZRQ8XyTfMbCrEAMx:exqGxI7SONuWv1XIUmrE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b937eb56ba5ff3db6a6592bf47282be0

Files

b937eb56ba5ff3db6a6592bf47282be0
.exe windows:6 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 264KB - Virtual size: 556KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lohoohwg
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bhbumrtj
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE