6b468da05c8f7be6bfa2b29de2408926e8cfc6c1c6a0cd59eaedde72aaab4aa0 | Triage

Sharing

General

Target

6b468da05c8f7be6bfa2b29de2408926e8cfc6c1c6a0cd59eaedde72aaab4aa0
Size

6.0MB
MD5

b60ea71b7edf7afa6cfb09a02709407c
SHA1

5f97a95cc05036e9c030583c2ee5648229cc9160
SHA256

6b468da05c8f7be6bfa2b29de2408926e8cfc6c1c6a0cd59eaedde72aaab4aa0
SHA512

03a3d78fd9397523f794710f965c8c388c482ad5c9bef459efedcc8dc24b30f9df5c35f9b572c7b9d6a1e13cedd9af68af8e935d300438f5efdd7144b4685a3f
SSDEEP

98304:5DYEWTnV7e9yUXMJ/1o1gLWMV99zw0RlPB6I/KIxAQGT1A0AWYOTsKkXHr:5UEWTnVyAnOzMVjH6WKQG5A0SKCL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6b468da05c8f7be6bfa2b29de2408926e8cfc6c1c6a0cd59eaedde72aaab4aa0

Files

6b468da05c8f7be6bfa2b29de2408926e8cfc6c1c6a0cd59eaedde72aaab4aa0
.exe windows:6 windows x86 arch:x86

e808ae61733bb909be192cdb480c7b1d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

InvalidateRect

advapi32

StartServiceCtrlDispatcherW

comctl32

PropertySheet

Sections

Size: - Virtual size: 5.4MB

IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 93KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE