b93b69d33f6e84f2d16b76bd6da3adc4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b93b69d33f6e84f2d16b76bd6da3adc4
Size

27KB
MD5

b93b69d33f6e84f2d16b76bd6da3adc4
SHA1

0a4ffa756bbb1e9462f9eae6d5f6094b0ced4619
SHA256

58211811f7c384b4a56031b9aedec80391cef90578a0cd5c12caa58d1bc2ea9f
SHA512

34257d1ce0948e4db6e55b01d2016959ecbc5fad9ba2f064aacae6a5225a34f9ffa0c0e94f7f80e26f39904bcb942fa4b69df501a3d7ccadec2031c4e26be1e4
SSDEEP

768:UBKdvwv/5FRoaPZivQAePUYh05j4paxefKXij:UBLmaxivQHUYh0YaEiXij

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b93b69d33f6e84f2d16b76bd6da3adc4

Files

b93b69d33f6e84f2d16b76bd6da3adc4
.exe windows:4 windows x86 arch:x86

db5188fd1ecb4d97a4299abd553f176a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstFileExA
UpdateResourceA
GetProfileIntW
BeginUpdateResourceA
EnumResourceTypesA
GetConsoleAliasExesA
GetEnvironmentStringsA
CreateDirectoryA
CreateSemaphoreA
CreateFileA
SetCurrentDirectoryW
GetFullPathNameA
EnumCalendarInfoA

user32

PeekMessageW
CharPrevA
DlgDirSelectExA
InsertMenuItemW
EnumDisplaySettingsExW

gdi32

CreateFontA
GetOutlineTextMetricsA
EnumFontFamiliesExA
AddFontResourceExW
CreateFontIndirectA

Sections

.��
Size: 20KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.��
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fasm
Size: 1024B - Virtual size: 900B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.masm
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ