a8afe2d48416f02dcfab8fb2ed0f27a6c80b6b00802ecc4fb6a2eedeaf41d352 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a8afe2d48416f02dcfab8fb2ed0f27a6c80b6b00802ecc4fb6a2eedeaf41d352
Size

63KB
MD5

99d67617b8bee3d4618e0744da46f63a
SHA1

4a38aa6529786ff2c8e52eca4fb22e86957efae6
SHA256

a8afe2d48416f02dcfab8fb2ed0f27a6c80b6b00802ecc4fb6a2eedeaf41d352
SHA512

743de9c1cc302032201660273f68c0df6c9b347fa3b0796e28a9e00525c4d18e99dd08d1c15218379c48469fda8dc0a6fe9ac2ca6a1e399deac0ef5daacd3c2e
SSDEEP

1536:G4NIlZlNHoP1DYOhaOQl8he3i68uo22g5cJh8Adh:GUaZlNHoP1DVhUfnt2gc7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a8afe2d48416f02dcfab8fb2ed0f27a6c80b6b00802ecc4fb6a2eedeaf41d352

Files

a8afe2d48416f02dcfab8fb2ed0f27a6c80b6b00802ecc4fb6a2eedeaf41d352
.exe windows:4 windows x86 arch:x86

33430a22d65eb948296fe14414dec793

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryExA
ResolveDelayLoadedAPI
LCMapStringW
GetDefaultCommConfigW
QueryIoRateControlInformationJobObject
GetConsoleCP
GlobalFree
UnhandledExceptionFilter
GetSystemWindowsDirectoryW
GetConsoleScreenBufferInfoEx

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE