32232bcef74e413ea1289061f606d67efa8c0f707a780845ed48ce85459b9eea | Triage

Sharing

Copy URL Twitter E-mail

General

Target

32232bcef74e413ea1289061f606d67efa8c0f707a780845ed48ce85459b9eea
Size

56KB
MD5

998f93c0a84b0b6bdaf2e38f778d88a7
SHA1

04ea5bb359469ef52a71c8bb45f0811617c660aa
SHA256

32232bcef74e413ea1289061f606d67efa8c0f707a780845ed48ce85459b9eea
SHA512

68347946f2b8fa610e6063ad0648ad8785c6b547365e0522a61bd973d48f9423c01e50693e0d46cb9a1ac79ccf645f0c00c118e5de365a24e7033d35c4d3f786
SSDEEP

1536:widhO1sclSqkSxKaCYSnTXzHnhHfP6tYx:LhOwy9DYzRfC2x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
32232bcef74e413ea1289061f606d67efa8c0f707a780845ed48ce85459b9eea

Files

32232bcef74e413ea1289061f606d67efa8c0f707a780845ed48ce85459b9eea
.exe windows:4 windows x86 arch:x86

2f0364e8bdc002ad8bd95849f67e4123

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForThreadpoolIoCallbacks
lstrcpynW
SetCurrentDirectoryA
WaitForSingleObject
RtlUnwind
BasepQueryAppCompat
GetProcessWorkingSetSizeEx
SetFirmwareEnvironmentVariableA
FileTimeToLocalFileTime
GetEnvironmentStringsW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE