994f26fa6a2a8b6748ed2a1c4c0ec3b4e8ff60417f7992eb568555d4c9d08044 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

994f26fa6a2a8b6748ed2a1c4c0ec3b4e8ff60417f7992eb568555d4c9d08044
Size

282KB
MD5

ed1b4707200c738b6618d21aaf58c0ef
SHA1

e292a861a0fe0c162bab5b7cd37b2871c9801863
SHA256

994f26fa6a2a8b6748ed2a1c4c0ec3b4e8ff60417f7992eb568555d4c9d08044
SHA512

b2d67bec4d9319619bad076cc9be7ba777bb6957b9890c00ecc70b0bc67824e40bd2d831be1801fea64ce23a91cd57c99a634c949e9a90ceab3985c98fdc4b95
SSDEEP

6144:TT7htUiQS9AWnuA8ZZ0vM9lnLJDNKGCFY20K8wjuRmaz/NgA//BiiA:bkiQS9TnJ8ZaKdDwHYNK8nma5TZii

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
994f26fa6a2a8b6748ed2a1c4c0ec3b4e8ff60417f7992eb568555d4c9d08044

Files

994f26fa6a2a8b6748ed2a1c4c0ec3b4e8ff60417f7992eb568555d4c9d08044
.exe windows:6 windows x86 arch:x86

09adcb23255df53d970bd5815df0a8c8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

wsprintfA

advapi32

CloseServiceHandle

Sections

Size: - Virtual size: 96KB

IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 93KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE