a691a766702d120c0aa3d3d0e6906dfde63e668c801714735ab4de42b87857ef

General

Target

a691a766702d120c0aa3d3d0e6906dfde63e668c801714735ab4de42b87857ef
Size

840KB
MD5

6bfa7619455d4273cc26d9fee31d274b
SHA1

6f17e8c709f918de51f2315476454d6119250748
SHA256

a691a766702d120c0aa3d3d0e6906dfde63e668c801714735ab4de42b87857ef
SHA512

8a4153eb45c94b7db2c0dad0414dd90fb2ba17706396ae6cc810c89aabfccec7e10a04e4c51e2bdd7cb4bdd5dffdfd2b1edd19d673fe3b8c108fd70f3a905398
SSDEEP

24576:Mb5aevZoARLKLFks929kefXxUdA75WVUlBpiNQ5:gRvZVQksQ9ZfxUdcF7

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/bbfb393c5f06bc1dc6a74d098c06c88409c361b6041bc9553f7efd28122f4f36.exe

a691a766702d120c0aa3d3d0e6906dfde63e668c801714735ab4de42b87857ef
.zip

Password: infected
bbfb393c5f06bc1dc6a74d098c06c88409c361b6041bc9553f7efd28122f4f36.exe
.exe windows:6 windows x86 arch:x86

2388fee6ad8ce4f4a35dbaf64e2da01a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

EnumDisplayDevicesA

advapi32

CredEnumerateA

comctl32

PropertySheet

Sections

Size: - Virtual size: 1.3MB

IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 94KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE