796f5fa891385ce44d96882697ac5d10N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

796f5fa891385ce44d96882697ac5d10N.exe
Size

120KB
MD5

796f5fa891385ce44d96882697ac5d10
SHA1

5283f1be7a469427f4b19b6091ab9fcef2b25d6a
SHA256

cd33774bc488eded2856b36ed4ce2832acda9d294ca1eaf878869b46a2e178a4
SHA512

f3cf5a7b9d00a45937b47cfb47d0200430ba1b2cf01649b5c2183d4c74b7534d583211e58c11520a44460cf823b556dbb3d7c88263fde2210b3e6bd624631fb4
SSDEEP

3072:lLe7C0iHEUxFrdjqDpQrIbQDbo6aJ/SCDGP:lLh0aE296WrvDk7J/qP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
796f5fa891385ce44d96882697ac5d10N.exe

Files

796f5fa891385ce44d96882697ac5d10N.exe
.dll windows:4 windows x86 arch:x86

0f44bf2b3b0b8d5ecae5689ff1d0e90d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode

user32

wsprintfA

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ