48d07f851ec207c9345b0d759e09268da7d9023f306a4e87a38502fde63eca9cN | Triage

Sharing

Copy URL Twitter E-mail

General

Target

48d07f851ec207c9345b0d759e09268da7d9023f306a4e87a38502fde63eca9cN
Size

56KB
MD5

104ac383040984aac5047b4617ec6140
SHA1

9f9d98e570d536aa20ec8adf9bd31a134c884c8e
SHA256

48d07f851ec207c9345b0d759e09268da7d9023f306a4e87a38502fde63eca9c
SHA512

6dfc7ed2756cb1acb0665878ae2383fc48905a20b2cd523238df961a3c09aae8ca2901be46c3ee9c1ab5fd3898358e7fc12de983ac02260215d7afbaaed4af14
SSDEEP

1536:JIsAgJURENQYPtlK4fwXxRrJFUrTBbgImVMJGq66V:WsAgJUR8QsYnDU/LmVMDV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
48d07f851ec207c9345b0d759e09268da7d9023f306a4e87a38502fde63eca9cN

Files

48d07f851ec207c9345b0d759e09268da7d9023f306a4e87a38502fde63eca9cN
.exe windows:4 windows x86 arch:x86

ab330abbc7ac8fefcba85d3034c6a959

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
SetLocalTime
GetStdHandle
GetDateFormatA
HeapCreateTagsW
LocalReAlloc
lstrcmpW
WritePrivateProfileStructA
CreateFiber
ResetWriteWatch
SetComPlusPackageInstallStatus
GetShortPathNameA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE