d575356c8c0a890afc7fb952b8064be6 | Triage

Sharing

General

Target

d575356c8c0a890afc7fb952b8064be6
Size

43KB
MD5

d575356c8c0a890afc7fb952b8064be6
SHA1

eaec091e7c58c9a66cd3fa1b6bc9019b19fd1463
SHA256

edd6f4179a78718de75a0b53cdaf870dbde7afea7ea4fa5d8de6550a9cf1e333
SHA512

bb5eb15092243a960b2a1dee71dbeebb24bbd7e4d842b8dc0674b40d0086d356bb049fa19187411d872ef5d8379797168ff445201fb06f0af04782ec8d59293d
SSDEEP

768:d//k9sUrmyokzZSaG5nkODiTIeELm2NBgnZAkECznvylCI+crX6:d09JokzCnziyLm9ZvECLkCIf6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d575356c8c0a890afc7fb952b8064be6

Files

d575356c8c0a890afc7fb952b8064be6
.exe windows:5 windows x86 arch:x86

137e3e0968b6e161e34ce2be4d5a1259

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexW
CreateFileMappingW
MoveFileExW
ReleaseMutex
lstrcpynW
GlobalLock
ExpandEnvironmentStringsW
SetFileAttributesW
FlushFileBuffers
SetEvent
GetCurrentThread
UnmapViewOfFile
GetTimeZoneInformation
GetSystemTimeAsFileTime
GetCommandLineA
SetEndOfFile
CreateProcessW
WriteFile
EnterCriticalSection
CreateThread
HeapFree
GetSystemTime
MultiByteToWideChar
DisconnectNamedPipe
GetTempPathW
HeapAlloc
CloseHandle
CreateEventW
CopyFileW
lstrcatW

Sections

.ktgf
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lolqp
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fehej
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ