c91e93cfdae35c1336453588ee0a4270N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c91e93cfdae35c1336453588ee0a4270N.exe
Size

63KB
MD5

c91e93cfdae35c1336453588ee0a4270
SHA1

263e5dd8e8f985d6b01fb849fe624e511ff7e695
SHA256

132f4cc60a5e3f41cbaaf7cecae97b0575f139e7b4c5be9c672092b97ac4a0a8
SHA512

65880ccab5a124c28202de99cbf0ad1040ba7b44c869210d6d3b9ed4b3368f4151b874f83410e71a3714ca843c56ecae229eff588002d8d45f1d0f6ea7712c64
SSDEEP

1536:BZSgkkDzU5CM0NM4ttgQsGLgNHSOd1UXSQs70oiW:TSgs5edLk5UNoiW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c91e93cfdae35c1336453588ee0a4270N.exe

Files

c91e93cfdae35c1336453588ee0a4270N.exe
.exe windows:4 windows x86 arch:x86

7bd0b547286afe2e5e76382d134dd99e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitializeProcThreadAttributeList
QueryDepthSList
GetLargestConsoleWindowSize
GetFileAttributesA
LeaveCriticalSectionWhenCallbackReturns
GetNamedPipeAttribute
CreateDirectoryA
BasepAllocateActivationContextActivationBlock

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE