da534b78b74cb0fe3d001523ada968b537e36c9a7ce8163e87a4d373ce83adab | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da534b78b74cb0fe3d001523ada968b537e36c9a7ce8163e87a4d373ce83adab
Size

51KB
MD5

8cb9a5d01fd77e4ab97041948f08a8c6
SHA1

5a5720a8ff164e378367ee0f75cd211acad212c3
SHA256

da534b78b74cb0fe3d001523ada968b537e36c9a7ce8163e87a4d373ce83adab
SHA512

3e6017545877e3b7edd6cb8e9aff89f4a2bfab8f8a1695133e42c004a5192b3519590e27dee9e3edddf5c865b0862f5c472e808da08b23c6be4470d251d4a4ef
SSDEEP

768:dD2oV2AJblQRNLzFrSNTVebqxjxMQhMk6CrpZFDq:dCoVXGRTuhBxj/hHVDq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da534b78b74cb0fe3d001523ada968b537e36c9a7ce8163e87a4d373ce83adab

Files

da534b78b74cb0fe3d001523ada968b537e36c9a7ce8163e87a4d373ce83adab
.exe windows:5 windows x86 arch:x86

3e262236e65f95b01f5c11555a1db856

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PostQuitMessage
DefWindowProcW
UpdateWindow
LoadCursorW
DispatchMessageW
TranslateMessage
GetMessageW
CreateWindowExW
RegisterClassExW
ShowWindow
PostMessageA

kernel32

FindClose
DeleteFileW
CreateFileW
SetFilePointer
ReadFile
GetStartupInfoA
GetModuleHandleW

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ