542049105430debf5f0c24f7dff50d7c5d82475bd956d7caf3e0e54c8fca38f8 | Triage

Sharing

General

Target

542049105430debf5f0c24f7dff50d7c5d82475bd956d7caf3e0e54c8fca38f8
Size

23KB
MD5

12bb6174446bbcb3af401ee77026bcc4
SHA1

7b24f8d503804a37e5e2b854a563af2d17e7c13c
SHA256

542049105430debf5f0c24f7dff50d7c5d82475bd956d7caf3e0e54c8fca38f8
SHA512

4c9317a74b0d7d8dd3a0f0d6c4e10a268c57612e8b8a14acc40cc477a747b205cc44e5066375ab895b9eb060fd332c50913506a7a965969570c73e7c3550b0db
SSDEEP

384:wqG+PZFaPFYLaL3Tf7+02YIk/MRpNaTEcMDYSTiq8sScHZDzzKN1Js3Po:kZIk/MPASDTB21y3Po

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
542049105430debf5f0c24f7dff50d7c5d82475bd956d7caf3e0e54c8fca38f8

Files

542049105430debf5f0c24f7dff50d7c5d82475bd956d7caf3e0e54c8fca38f8
.exe windows:1 windows x86 arch:x86

bb9a68197a2dda6c8411f08fed623690

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
FreeLibrary
GetModuleHandleA
GetProcAddress
HeapCreate
HeapAlloc

winmm

mciSendStringA

msacm32

acmStreamOpen

user32

LoadIconA
LoadCursorA
RegisterClassA
CreateWindowExA
GetMessageA
DispatchMessageA
DefWindowProcA
PostQuitMessage

Sections

.text
Size: 1024B - Virtual size: 939B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 582B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.htext
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE