39421400f15fc1ce33851a783ad78e822d2c9bc353657a50e656594a89968fc1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

39421400f15fc1ce33851a783ad78e822d2c9bc353657a50e656594a89968fc1
Size

38KB
MD5

002fb9b0c1860b7b964455c11cbd0c5b
SHA1

ad64b1d4d9506e5ae99137515ed29e8d98337509
SHA256

39421400f15fc1ce33851a783ad78e822d2c9bc353657a50e656594a89968fc1
SHA512

2b2a006d83f601334861104f3acec1cf35a02646db9af8cf0c367eb000aee93c3f4d24ea53e378aad83353f3b15bf5fb1aa2653630097fa31a9c065b99fac165
SSDEEP

768:0DrRJcFNY9KuzaG8o8KjFoj19TCv1KyhBqTfvv/wpvrsKx8QxlZbth:PO9RzX8VbuXqTfXmIKx8QVbT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39421400f15fc1ce33851a783ad78e822d2c9bc353657a50e656594a89968fc1

Files

39421400f15fc1ce33851a783ad78e822d2c9bc353657a50e656594a89968fc1
.exe windows:5 windows x86 arch:x86

9329834fffa30750d65c78719137d97b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
ExitProcess
CloseHandle
ReadFile
SetFilePointer
GetFileSize
GetModuleFileNameA
GetModuleHandleA
HeapFree
GetProcessHeap
HeapAlloc
VirtualAlloc
VirtualFree
UnmapViewOfFile
MapViewOfFileEx
CreateFileMappingA
GetProcAddress
LoadLibraryA

user32

PostQuitMessage
RegisterClassExA
LoadCursorA
LoadIconA
DefWindowProcA

Sections

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 672B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ