d5afcc4c328ca4a8e3909ee50efd929a85bae21e5fd5b8d14f4df4f47a25acb5 | Triage

Sharing

General

Target

d5afcc4c328ca4a8e3909ee50efd929a85bae21e5fd5b8d14f4df4f47a25acb5
Size

24KB
MD5

4ac3a570f006a1b0e016257d3be5018c
SHA1

ad1d60f34db89df39ddebd4ee26df3d8062449d0
SHA256

d5afcc4c328ca4a8e3909ee50efd929a85bae21e5fd5b8d14f4df4f47a25acb5
SHA512

ea84a63687b0d6f9cd7c8e0f3016e519d15224c801b9ac62f0cef32276cf76d15db99a885ab49ebdae4ee5bb98083e8cc8255f12c5bffc3d657e8eac9f51ece5
SSDEEP

192:jOxOyx36vL/TkJC4bMXGrSdqmZBdZDzQwtCc2rQX3yYRYyX6VREU+4RxFvRGxcn/:jOcyYT4DbMtqmldFQJlkxs1No

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d5afcc4c328ca4a8e3909ee50efd929a85bae21e5fd5b8d14f4df4f47a25acb5

Files

d5afcc4c328ca4a8e3909ee50efd929a85bae21e5fd5b8d14f4df4f47a25acb5
.exe windows:4 windows x86 arch:x86

5e825e8a71038dc17d4abd3f19b7c7fd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
LoadLibraryA
GetProcAddress
GetOEMCP
GetACP
GetCPInfo
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
HeapAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
VirtualAlloc
HeapReAlloc
GetStringTypeW

wininet

InternetAttemptConnect
InternetCheckConnectionA
InternetOpenA
InternetConnectA
HttpOpenRequestA
HttpSendRequestA
InternetQueryDataAvailable
InternetReadFile
InternetCloseHandle

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE