f5bf52fcc273808b8b25ed86416ae120N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f5bf52fcc273808b8b25ed86416ae120N.exe
Size

24KB
MD5

f5bf52fcc273808b8b25ed86416ae120
SHA1

3ccd693e8951fbb1ff98a2f950999ceef5b85684
SHA256

6df7e9ddd2e2f4ceb688d047d2de4d68687d16507a282f49f781962e535850f0
SHA512

f65d4cb9ed28b57675d93cd8642b897f61b77810b2b15bf5014041c69c2befff24483900cc16d882fe4363959a5df33675df093ac07f330985ac90841da77fbe
SSDEEP

192:H0NqwaXkUVJsLNRci5Z9vMB1hT7dfBxoX2yjtLaKZseHuYP2OJeI7III1II3IIQ0:H0NqwaXklRRvZxMR5QYKZseH59MZR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5bf52fcc273808b8b25ed86416ae120N.exe

Files

f5bf52fcc273808b8b25ed86416ae120N.exe
.exe windows:5 windows x86 arch:x86

f08fb13efbf8ba797507962ac13ecc2f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

cabinet

ord13

gdi32

CreateDCA
GetWindowOrgEx
SetWindowOrgEx

kernel32

GetModuleHandleW
GetProcAddress
ExitProcess

Sections

.text
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ