da69e65026f5443d7ad82fdf2b96a5f0N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da69e65026f5443d7ad82fdf2b96a5f0N.exe
Size

91KB
MD5

da69e65026f5443d7ad82fdf2b96a5f0
SHA1

5b2547488833b132a3ca369abf8032b406e96ebc
SHA256

d578e3bd2131fb1c0bdc71cd2834bddf809a8ca1e1c46f45e4e13080b1cd007c
SHA512

8b6ede666c09fae426fe914fa5529195102f0814ca408ebffddead8ed4ae1846fd81d079fa9ce3c986e82e6ea25cb322221fdf69493ad685df8e1705620f002a
SSDEEP

1536:u1RSe/LxVVOwBWcJ3BQAjeUdI6W1Crul356kRuwvQlqiwfeUDfOQxo20aUUR1GkI:UR7xgcJ3CAqfl0o35LswkhwGUDfOmo2R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da69e65026f5443d7ad82fdf2b96a5f0N.exe

Files

da69e65026f5443d7ad82fdf2b96a5f0N.exe
.exe windows:4 windows x86 arch:x86

eedabc7054d436a2ce188fa567aabc44

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BaseFormatTimeOut
IdnToNameprepUnicode
ReadDirectoryChangesExW
WriteConsoleW
ParseApplicationUserModelId
BasepProcessInvalidImage
HeapSize
CreateDirectoryExA
GetConsoleInputExeNameW
BaseFlushAppcompatCache

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 67KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE