ef979240255c51cf59266015ee9f0d397a953ae28dc2d7b37c9d36c69b294db3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ef979240255c51cf59266015ee9f0d397a953ae28dc2d7b37c9d36c69b294db3
Size

83KB
MD5

f74b1df5156220ce015d9ef334a38661
SHA1

ec6865f38992682803ff42b722873ed13099a080
SHA256

ef979240255c51cf59266015ee9f0d397a953ae28dc2d7b37c9d36c69b294db3
SHA512

3c6ed9cb9052a9106aa4c37386202d2661705e7e6f9d72e2371c17fdaf5aa2589a7fa58d061a06f978ee9dc19f2efa644be59d6076c9d30ccf0eaeb1bd14174e
SSDEEP

768:MdEGek/0qSUtz5kyGqKuJ4cEoedsfIk5+jxc24aX4XwuD7LsiAf+6bjL2ULC5fVI:Md0qi6naIXxD7LU+sjL2UG5WrZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ef979240255c51cf59266015ee9f0d397a953ae28dc2d7b37c9d36c69b294db3

Files

ef979240255c51cf59266015ee9f0d397a953ae28dc2d7b37c9d36c69b294db3
.exe windows:4 windows x64 arch:x64

660f996789bea915fcce2841331af93f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

msvcrt

__getmainargs
fopen
fclose
ferror
clearerr
fread
fwrite
malloc
free
exit

user32

MessageBoxA

Sections

.text
Size: 82KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 180KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE