d4db6f555b3533a34c5b5d41634bc7de | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d4db6f555b3533a34c5b5d41634bc7de
Size

343KB
MD5

d4db6f555b3533a34c5b5d41634bc7de
SHA1

340d12b8d3b8c11f5081fd14d9c6d8087beb8b98
SHA256

e721278bff86838d69a83c2bc12b496b96edf11a9bbd18ee10c72bf0934cb223
SHA512

30b3958476f17ebf185005f3663d0905cfe24f53976bb0b1e955ba467c07b420a31487942ddb7772ae25098ee0fa17db5352b2b13ae8bacf79c398868602a51c
SSDEEP

6144:/PxCznEUUbkYLbOsdpO4ZOGYUcZAU6x3Y+92j1UQm:Xx6EUUIYHZdpL1ZtY+M1U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d4db6f555b3533a34c5b5d41634bc7de

Files

d4db6f555b3533a34c5b5d41634bc7de
.exe windows:5 windows x86 arch:x86

9d32dee28fc81e5e6366f371901c5c3e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
GetSystemInfo
SetConsoleCursorInfo
HeapAlloc
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
SetConsoleCtrlHandler
HeapFree
ExitProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
HeapReAlloc
TerminateProcess
IsDebuggerPresent

user32

GetSystemMenu
GetSystemMetrics

gdi32

GetSystemPaletteEntries

Sections

.text
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 279KB - Virtual size: 279KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ