68587b8b1571c46603816cf4efb302891fad7a767288a61e6cc604c8b2cc97c6N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

68587b8b1571c46603816cf4efb302891fad7a767288a61e6cc604c8b2cc97c6N
Size

83KB
MD5

f49ba6d39e074a9345ecf97dbe36f400
SHA1

33f8b4b7dcd7e627b4e6b8cf7ea3b36eeeea275e
SHA256

68587b8b1571c46603816cf4efb302891fad7a767288a61e6cc604c8b2cc97c6
SHA512

a1c042c9ac1b04e5761154b793db10588dc6ddb583e26391b8e9bd3d5d872ba931c696a202d09e3122894a6127d42dbcdd8ffcb2e684614f25d964a8bd187248
SSDEEP

1536:SkZei/AGQdOyUH8syl2qtnW/v3pjVrs2ryrd1vUQuqKsw:SJi/lzH8jsLH3Hs2qm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
68587b8b1571c46603816cf4efb302891fad7a767288a61e6cc604c8b2cc97c6N

Files

68587b8b1571c46603816cf4efb302891fad7a767288a61e6cc604c8b2cc97c6N
.exe windows:4 windows x86 arch:x86

ed4680154eb05e774769b78f04263f7e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateActCtxA
GetVolumeNameForVolumeMountPointW
WritePrivateProfileSectionW
SetLocaleInfoA
CompareFileTime
GetModuleFileNameW
GetUserDefaultUILanguage
GetCommState
SetCalendarInfoW
CloseHandle

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 27KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE