dde969cf586c3484f93a7e58af1bb651 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dde969cf586c3484f93a7e58af1bb651
Size

28KB
MD5

dde969cf586c3484f93a7e58af1bb651
SHA1

dc2f8eefa22413e288e2b314a8ee6e7cb0c47894
SHA256

77feb7a49f8f29f9b5a632f67c8ce02edb99eec26d6aefdfca5b01f3caaaef78
SHA512

c0d980962de1cd7cf5a9dba5fb8d95707fea6a573071ea13e7db94ecddf998366a54d67e3ce3d61b279f6738dfa91b7dad6d0939ad675017f6fd2357bc1146f4
SSDEEP

192:r73fbzKsxE3IV6eXOaFY0t0LX2Kf/gSfIdNmTPdIfgcMQhapx+Zjqbb:rOs63ceiY0+mK/fONmjdIfMIgOmbb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dde969cf586c3484f93a7e58af1bb651

Files

dde969cf586c3484f93a7e58af1bb651
.exe windows:4 windows x86 arch:x86

eee538f3be92ca3862e32deb50976e37

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetProcAddress
Sleep

user32

wvsprintfA

Sections

.text
Size: 209B - Virtual size: 209B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 202B - Virtual size: 202B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ