f358b0336bbbecbb41299435af5f57ec12e8dc311e38ca88a4f2156366cf1a37 | Triage

Sharing

General

Target

f358b0336bbbecbb41299435af5f57ec12e8dc311e38ca88a4f2156366cf1a37
Size

91KB
MD5

14d804cb945013012ee7fe3fe0f106dc
SHA1

a54b151f4ff182d43f39cdf7ff8d72cd0bf5bf0f
SHA256

f358b0336bbbecbb41299435af5f57ec12e8dc311e38ca88a4f2156366cf1a37
SHA512

1d35aab0ca224ca3d0a0e6fbbd1e11aa4a3d22703a685d40cd485f065ece83c25b1a17f77907a31fd7a2ddbb23546ce4850faff3b3803d2e964c950a86736782
SSDEEP

1536:ACggBwuhfo8ThDNRTYDIT7nuaK4y88aSbp1uE+PU0ZsOIEamlmY7w0xOU4mMTSvw:A5uhfzD76rax8aSt1R+HmNMlmQw0HLvw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f358b0336bbbecbb41299435af5f57ec12e8dc311e38ca88a4f2156366cf1a37

Files

f358b0336bbbecbb41299435af5f57ec12e8dc311e38ca88a4f2156366cf1a37
.exe windows:4 windows x86 arch:x86

476377343e539ea7f66408249c0b18fc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumCalendarInfoExA
QueryActCtxWWorker
SetXStateFeaturesMask
FindActCtxSectionStringA
RegDisablePredefinedCacheEx
GetMaximumProcessorGroupCount
SetXStateFeaturesMask
RegSetValueExW
GetConsoleOriginalTitleW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 77KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE