39d1c57023c8e33f030c22e2af61c92fdfebb3895ed5ff0e965ac7d01d98e3ecN | Triage

Sharing

Copy URL Twitter E-mail

General

Target

39d1c57023c8e33f030c22e2af61c92fdfebb3895ed5ff0e965ac7d01d98e3ecN
Size

932KB
MD5

e3a817bd8194e3e63b6120707b7ccac0
SHA1

b44098375b20cc1d1e660851d5e2f18f56749782
SHA256

39d1c57023c8e33f030c22e2af61c92fdfebb3895ed5ff0e965ac7d01d98e3ec
SHA512

0e7da27cc9b7c74d2e17272ec9decf60358dbccee7036c90ceec3d35b4c5ba4935c0a188b2b6b0d50dc4a718bd1d55cdd709aa821ac9d9c18247a08ff7a8dfbd
SSDEEP

24576:lELeAdmZgS8HcwYgiIhZv0g5bIGF9W/akhFQqQAbqll:lEJkj8HcwyIXv0g5bxU/aprAyl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39d1c57023c8e33f030c22e2af61c92fdfebb3895ed5ff0e965ac7d01d98e3ecN

Files

39d1c57023c8e33f030c22e2af61c92fdfebb3895ed5ff0e965ac7d01d98e3ecN
.exe windows:4 windows x86 arch:x86

c825d892ec1994311831ac7bb64ddf1c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSAStartup
WSAGetLastError
recv
socket
connect
send
closesocket

kernel32

Sleep
LoadLibraryA
GetProcAddress
TerminateThread
lstrlenA
MultiByteToWideChar
ExitProcess

oleaut32

SysAllocStringLen
SysFreeString

Sections

.text
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE