9b73096dd300cc29bdb8da4d599276a1ef4c3e6f84a065cceaebb36349121c56 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9b73096dd300cc29bdb8da4d599276a1ef4c3e6f84a065cceaebb36349121c56
Size

62KB
MD5

1a65671548ee0bd6a79d525d775f56bb
SHA1

7824df12be4c10d85c1896b7ec535bd7c3d21a98
SHA256

9b73096dd300cc29bdb8da4d599276a1ef4c3e6f84a065cceaebb36349121c56
SHA512

de30bb9bf91709fdb368690d05ea4cde96616ba7c98b3f5d23e0b21ac1062ef504dedec94b38ae9fdc042e6472a53920026c90c6cd82bb0a1312096cec70893b
SSDEEP

1536:bomMIWdF2kmVEXR5YvdGnd9S8VfHxLnRCc:bhm2klRy4d9hVKc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9b73096dd300cc29bdb8da4d599276a1ef4c3e6f84a065cceaebb36349121c56

Files

9b73096dd300cc29bdb8da4d599276a1ef4c3e6f84a065cceaebb36349121c56
.exe windows:4 windows x86 arch:x86

663b131878c9b4ae0c7c94e9336c5059

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumSystemGeoID
GetFirmwareType
GetCurrentActCtxWorker
IsThreadAFiber
RegisterWaitForInputIdle
GetCurrentConsoleFont
VerifyVersionInfoW
MoveFileTransactedW
LoadLibraryExA
SetThreadInformation

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 47KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE