dfa0b65a844dc2f266062673ecfa353e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dfa0b65a844dc2f266062673ecfa353e
Size

20KB
MD5

dfa0b65a844dc2f266062673ecfa353e
SHA1

e933745f72dde04efc59fc17cc636765a5040b87
SHA256

a9206606a59ccabc216c4b2d033721c5125b1935d9aee7ae4083dfe9ddf71367
SHA512

773203985955aa32eb01ce879ba4af815c1953e29643356e316be187bcba7433b2bb23753c40112deaa1474f3795b5d3ce7c9c41a68a8586eae20aa896fce8d7
SSDEEP

192:Nn9i6elYZEup8C+1X3VP1oyn7sRmgJq37kbaeUa/eCGwUQOx:N9XkYZEud+1h1R+qr2UlQO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dfa0b65a844dc2f266062673ecfa353e

Files

dfa0b65a844dc2f266062673ecfa353e
.exe windows:4 windows x86 arch:x86

9d90c300d2cb9218de46b97a380cdd9e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42

ord464
ord466

msvcrt

_initterm
__setusermatherr
__getmainargs
_mbscmp
_acmdln
__p__fmode
__set_app_type
exit
_except_handler3
_XcptFilter
_exit
_splitpath
_makepath
_adjust_fdiv
__p__commode
_controlfp

kernel32

GetStartupInfoA
GetModuleHandleA
GetModuleFileNameA
FindFirstFileA
FindClose

ole32

CoInitialize
CoGetClassObject
CoUninitialize

oleaut32

VariantInit
VariantClear
SysAllocString

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 468B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ