d36028f709757b3d16f40d906fb97bba | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d36028f709757b3d16f40d906fb97bba
Size

4KB
MD5

d36028f709757b3d16f40d906fb97bba
SHA1

6226ef6d952c1190cdaa44507ada780caf141815
SHA256

73ac104290923a514ff280c3a4c66c27885e4ca078c0ea0d8aadeb8502e85d48
SHA512

1f6fc3cde9326211cecba3f238fae4c5a896bacc5da0823fb57ee2763d830ad870fd792ac2bbcc1fc873749d6bf30bbe9819f8ec2e44967a969dc0c3487f409d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d36028f709757b3d16f40d906fb97bba

Files

d36028f709757b3d16f40d906fb97bba
.exe windows:1 windows x86 arch:x86

846c783e21aebf6b73087ae8aa5dad0b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

ExitProcess
FindFirstFileA
WinExec
_lclose
_llseek
_lopen
_lread
_lwrite
CopyFileA

Sections

CODE
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ