1255c2e3472cdf52b9f5be38d52915599c33954ead43218fe3c2297196284fbd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1255c2e3472cdf52b9f5be38d52915599c33954ead43218fe3c2297196284fbd
Size

63KB
MD5

1e2d4ac6c8ddf1bf2e93cc52244a115b
SHA1

2723b93fceca4bc492adb684673db1b34dc2ca9d
SHA256

1255c2e3472cdf52b9f5be38d52915599c33954ead43218fe3c2297196284fbd
SHA512

ec73a2b913a5c89819b4725a140b512a4740abc5d1b19bffbe27068d066e915b9cea52d52ee94e8d6ecd113b8420a88e854b009bf709884942c7f1d9041ec874
SSDEEP

1536:XISo/fSKBpE3WyY2LJGWXN6Je0fCuSKuH0NrtX2cQrcxEZN12:mKKBi3WMhN6JefuSXH0VtXacxELs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1255c2e3472cdf52b9f5be38d52915599c33954ead43218fe3c2297196284fbd

Files

1255c2e3472cdf52b9f5be38d52915599c33954ead43218fe3c2297196284fbd
.exe windows:4 windows x86 arch:x86

93b9ff75b1a0fcb36593d6dae914bb83

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleWindow
UnlockFileEx
GetModuleFileNameA
GetConsoleInputWaitHandle
CheckNameLegalDOS8Dot3W
AreFileApisANSI
FindFirstFileA
LocalUnlock
GetDefaultSortkeySize
GetNextVDMCommand
GetNextVDMCommand

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE