23b3ddb979172b5998c445a724048f07ad0669b90e788070b5ba364ea15e2897 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

23b3ddb979172b5998c445a724048f07ad0669b90e788070b5ba364ea15e2897
Size

7KB
MD5

7edf00e6eebab3d1fb2589dd94d0eab4
SHA1

6ae8d0c0914fad06a3212bcbbfe2ace8f85cbffb
SHA256

23b3ddb979172b5998c445a724048f07ad0669b90e788070b5ba364ea15e2897
SHA512

5f9e8b5046f8dc1277a9a85092a16cf61edaa381f0d87235060b9a6ee2a9d75be516f87f1a7e31ab97bfacc38610b51612da902f348fefd9ed28ea80396c6fec
SSDEEP

96:zWxP99AH1gtbuF1vXCirzneQExL26MMFkT2UCU/li0X067n2bqi6Y2bj6/B:S1w+iF1v9WQE7M9lFjnS/B

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
23b3ddb979172b5998c445a724048f07ad0669b90e788070b5ba364ea15e2897

Files

23b3ddb979172b5998c445a724048f07ad0669b90e788070b5ba364ea15e2897
.exe windows:4 windows x86 arch:x86

b55f776e57c6a6e791d3ddbe3178ef57

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

LoadLibraryA
FreeLibrary
lstrcatA
lstrlenA
ExitProcess
VirtualAlloc
GetProcAddress

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

Sections

.text
Size: 1024B - Virtual size: 530B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 398B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ