9b6b4e933ed97c6a415f2bb294e3c0bd09f794765feab434c3ef0892927e5535 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9b6b4e933ed97c6a415f2bb294e3c0bd09f794765feab434c3ef0892927e5535
Size

487KB
MD5

38a507b028f2ef2d15ad9bffc6264c2f
SHA1

a0ce5f0fc296349a6e5bf9e76076928c9aaf9a84
SHA256

9b6b4e933ed97c6a415f2bb294e3c0bd09f794765feab434c3ef0892927e5535
SHA512

69a771aaad7f34c135d1c65c6c0ebd7f1066b2f0e8598f8ef17a483c3269d13ca4359b084b9c3bca15c9f73b78765b6025dc6c5094f2abe4192a064401594fe5
SSDEEP

12288:Ka+6l0IyJXz+MYORyOO16Qi7li6GSTq33tIkLQuxFig:Y6G7/nRyOTi649xFig

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9b6b4e933ed97c6a415f2bb294e3c0bd09f794765feab434c3ef0892927e5535

Files

9b6b4e933ed97c6a415f2bb294e3c0bd09f794765feab434c3ef0892927e5535
.exe windows:4 windows x86 arch:x86

bd51a645a9c68bd03b2e51586e5cbdcb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress
LoadLibraryA

Sections

.text
Size: 485KB - Virtual size: 520KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE