c92ad5b974fa5ab06ac67b5c741b2a70 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c92ad5b974fa5ab06ac67b5c741b2a70
Size

15KB
MD5

c92ad5b974fa5ab06ac67b5c741b2a70
SHA1

66e422a738e425b3412fee5af48b73aeadc41b9b
SHA256

27ae04a9b3d243e9cc3660b5f019055ca582f0afcf7979488ee78777aebd4786
SHA512

a6f8a5d88cab7e74fe2cacdb326f4059d35906d6a4530ff04beafea009c4e473022727a2f7f7f70c8fcd67789085d8949c22d36ad6c38360ca7cf0c8511f1fdc
SSDEEP

384:O9Lpj713pyCdSXr4q+u9OmUTKQzZlJ26:O7jFcmSXrCu4mUb51

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c92ad5b974fa5ab06ac67b5c741b2a70

Files

c92ad5b974fa5ab06ac67b5c741b2a70
.exe windows:4 windows x86 arch:x86

551680866c2cdcbdf032369c079b8ba5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
ExitProcess

user32

EnumDesktopsA

Sections

.text
Size: 1024B - Virtual size: 968B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 174B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE