47d7f7e0c3665dcfa4f71da3a8d76500N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

47d7f7e0c3665dcfa4f71da3a8d76500N.exe
Size

26KB
MD5

47d7f7e0c3665dcfa4f71da3a8d76500
SHA1

9aed5ae07fc2b5144c6ab11f7a6170120d95971f
SHA256

38789200fde5036be0236a88ee1259e1fdeacd1b57593e6fe364a53a0e2cafbc
SHA512

81e03bb982a0f8cccc8dda452bb19fcc5b4ed586cd51c4d7e9927db38e14bf63c283159c3ddf373824df4694b239153b1648736c2ff97d4a2c9c90aeeccb5309
SSDEEP

768:qrUhl79KVCwti4+l9G+HtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsUI+psmS:qrUn8d+1tdgI2MyzNORQtOflIwoHNV2r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
47d7f7e0c3665dcfa4f71da3a8d76500N.exe

Files

47d7f7e0c3665dcfa4f71da3a8d76500N.exe
.exe windows:5 windows x86 arch:x86

2a7fb631f22727fd6fd90589adafa9b7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMessageA
TranslateMessage
ShowWindow
SendMessageA
LoadCursorA
RegisterClassExA
PostQuitMessage
MessageBoxA
LoadIconA
EndPaint
DispatchMessageA
DestroyWindow
DefWindowProcA
CreateWindowExA
UpdateWindow
BeginPaint

kernel32

GetCommandLineA
lstrcpyA
LoadLibraryA
GetProcAddress
GetLastError
ExitProcess
CreateFileA

gdi32

CreateSolidBrush
CreatePen
CreateFontIndirectA
CreateCompatibleDC
CreateCompatibleBitmap
DeleteObject

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 380B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 408B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ