0439822e61fe56a58449443f60e5d10058e1cb13812b8bdaee6da508bd950048 | Triage

Sharing

General

Target

0439822e61fe56a58449443f60e5d10058e1cb13812b8bdaee6da508bd950048
Size

1.7MB
MD5

7f7d248e20516ee3999ae01ff1a46291
SHA1

fa16cf49be7319e534456a065d09d2c68f615f2f
SHA256

0439822e61fe56a58449443f60e5d10058e1cb13812b8bdaee6da508bd950048
SHA512

d24be9a75e9d75c6038094d36d42ebec7653032001fcdca12a2d0aab02855fd3d3347ca38f16c0100b42370c8d7aa8a0b56d2070feca238ef036112fc707087a
SSDEEP

24576:q44yv4yv4yv4yv4yv4yv4yv4yv4yv4yv4yv4yv4yv4yv4yv4yv4yf:n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0439822e61fe56a58449443f60e5d10058e1cb13812b8bdaee6da508bd950048

Files

0439822e61fe56a58449443f60e5d10058e1cb13812b8bdaee6da508bd950048
.exe windows:4 windows x86 arch:x86

68140a9a4b28871f88884585977b9263

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryA
CompareStringA
GetProcAddress
LoadLibraryA
GetTickCount

user32

DispatchMessageA
TranslateMessage
GetMessageA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ