b993be6622e3fb43bf878470b3f6bab2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b993be6622e3fb43bf878470b3f6bab2
Size

56KB
MD5

b993be6622e3fb43bf878470b3f6bab2
SHA1

498072249af3bbaa5c41f1adbc5ce1f10958c559
SHA256

005d7d1a6d933770f2480b98ecd1b4a2d4a2f13f907a665ef75a0b9f4d2395cc
SHA512

c277d440dddc66246f7141fadee7cf5e0ba2d1156f7c2906bf48308d69e9ace4e6728942bbe3487c6cab5f2274c6030902f1792d96af89e2ad2421c455906b07
SSDEEP

768:OFbTtnIsmzoDNL09aF7IApmlpyncM+Xz81EsbYva0IpOQw/ku+VLjbiaL1xWWGtH:pUU+Fjb7UWgvERoFnmMoSM/Pxe12LQB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b993be6622e3fb43bf878470b3f6bab2

Files

b993be6622e3fb43bf878470b3f6bab2
.exe windows:4 windows x86 arch:x86

672430d966ea0a919090312e8da57382

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
HeapWalk
WriteProfileSectionW
ActivateActCtx
GetProfileIntA
WritePrivateProfileStringA
SetUnhandledExceptionFilter
EnumSystemCodePagesA
InitAtomTable
GetModuleFileNameA
IsBadCodePtr

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE