fc65e05fb084c04524d23c52ba4951125943d1d109727c5f78e78b64d5cbd592 | Triage

Sharing

General

Target

fc65e05fb084c04524d23c52ba4951125943d1d109727c5f78e78b64d5cbd592
Size

1006KB
MD5

2bfca009593c6b4be53979cf8d69023d
SHA1

0c019852533ee4d6f36dccdd6c0fca8070de2944
SHA256

fc65e05fb084c04524d23c52ba4951125943d1d109727c5f78e78b64d5cbd592
SHA512

e361860ab966bfec775d2d6ac4482dfd39516ef39d3c8069ec79a8d60a83a74a0103af8515408a1f2ff16145dd157a28e89adff469d9e3e800d602ec3367b8c4
SSDEEP

24576:/LZgDe961iKogI4B92x5CRnSjOVOPU3SrJrQBC/1cokZzY:/LZgD91i2tcgnSjO5wdQZ0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc65e05fb084c04524d23c52ba4951125943d1d109727c5f78e78b64d5cbd592

Files

fc65e05fb084c04524d23c52ba4951125943d1d109727c5f78e78b64d5cbd592
.exe windows:5 windows x86 arch:x86

f21eae17bad58113879845b16552b058

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

ntdll

RtlGetCompressionWorkSpaceSize

oleaut32

VarUI1FromR8

user32

GetKBCodePage
GetWindowTextA
GetMenuCheckMarkDimensions

Sections

.text
Size: 999KB - Virtual size: 1000KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 195B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE