1490d36f76ee0ed55a3f56ceafff9230N[.]exe | Triage

Sharing

General

Target

1490d36f76ee0ed55a3f56ceafff9230N.exe
Size

6KB
MD5

1490d36f76ee0ed55a3f56ceafff9230
SHA1

071fa076843967979041c9a934ea0a810327b23a
SHA256

4d067f51d28e289f5dc5c9ac74d48f7a5fc411ffdb21b1f47a8ee3485c52e8cc
SHA512

ba72bc31f387dc3c74b1e9f0f40ae8eec1788ea31e4238745423aa86cc3415acde4334063c1192c3614377ed2f979ae65a20ebb39f8f9dfb484b7cd0d1a06840
SSDEEP

96:DixZjmjtjd8jPjcZGR5TIhb5CRDBcahahahahahgMYM/zCWUI7QSwYQ:unSR6bgY3RDBcwwwwwgMYM/zCXSwYQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1490d36f76ee0ed55a3f56ceafff9230N.exe

Files

1490d36f76ee0ed55a3f56ceafff9230N.exe
.dll windows:5 windows x86 arch:x86

33eb74cdd77dab1b168bbaa130115a9d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ReadFile
CreateFileW
GetProcAddress
LoadLibraryW

user32

PostMessageW

msvcrt

free
_initterm
malloc
_adjust_fdiv

Exports

Exports

rundll32

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 503B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ