86cf37a26c462a474c2bb4a3cf3d8560N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

86cf37a26c462a474c2bb4a3cf3d8560N.exe
Size

64KB
MD5

86cf37a26c462a474c2bb4a3cf3d8560
SHA1

f50e36cd5158d8c25057becf0c01577dc8a3c184
SHA256

40d42fb00364db0b44db59f31313f22167e35a8394d6aa62499bc0ba461f3586
SHA512

4ad294f8fd6f7760cd52e41d7cc7071886ebb4a2c760c69bb05884556109ac4007fe7ecf3744bc50b71e27db063f7334dd9ed6f65807c43cf89a0383c76a2dd4
SSDEEP

384:9JxZj1JA7xhFcAL837x7x3YzVETKwmhETK02LKSCJEieoSYTF1j:9Jx5u3Fch39NozVE2phE20Cs6cD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
86cf37a26c462a474c2bb4a3cf3d8560N.exe

Files

86cf37a26c462a474c2bb4a3cf3d8560N.exe
.exe windows:4 windows x86 arch:x86

e9fdda236ab75aee0ce690bfe73ce717

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
ExitProcess
FindClose
FindFirstFileA
FindNextFileA
GetFileSize
GetModuleHandleA
GetTickCount
MapViewOfFileEx
ReadFileEx
RtlFillMemory
RtlMoveMemory
CreateProcessA
RtlZeroMemory
SetEndOfFile
Sleep
UnmapViewOfFile
VerSetConditionMask
VirtualAllocEx
VirtualFreeEx
WriteFileEx
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA
CreateFileMappingA
CreateFileA
RtlUnwind
CloseHandle

user32

IsDlgButtonChecked
LoadIconA
MessageBoxA
SendDlgItemMessageA
SendMessageA
SetDlgItemInt
SetDlgItemTextA
DialogBoxParamA
CheckDlgButton
wsprintfA
EndDialog

comdlg32

GetOpenFileNameA

comctl32

InitCommonControls

Sections

.text
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 356B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 239KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ