b42f4f0495cc642039af1cee1998d64631b289a2df27fda4b6be563bac2d3c95N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b42f4f0495cc642039af1cee1998d64631b289a2df27fda4b6be563bac2d3c95N
Size

93KB
MD5

2fc1ecad6243a1d9067bb64797c48960
SHA1

84af110cab22ee13fcacfa945e2a836ad30f700c
SHA256

b42f4f0495cc642039af1cee1998d64631b289a2df27fda4b6be563bac2d3c95
SHA512

ab345fc72bb1f7de00dbe4c50f73d4b3a443615b8e18f519dbdb21479edd79ee69b4e3af887da0c3f6c50a35fe74188314a28baab37afb085c05d019f136489b
SSDEEP

1536:Wp/F9X5iJgHntUMfaer3XS7qxnr2xy4e86EDnTQmD3uXF22mdLrdqzilc0MBIQaD:WfiJmntg7qxnrqLTxD3+2Zd/d8ilc0JD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b42f4f0495cc642039af1cee1998d64631b289a2df27fda4b6be563bac2d3c95N

Files

b42f4f0495cc642039af1cee1998d64631b289a2df27fda4b6be563bac2d3c95N
.exe windows:5 windows x86 arch:x86

3cc9287751332ea22c294992de2d5fee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__set_app_type
__p__commode
_initterm
_XcptFilter
_except_handler3
_adjust_fdiv
_exit
__p___initenv
free
__p__fmode
__setusermatherr
__getmainargs
_controlfp
calloc

kernel32

CompareFileTime
GetProcAddress
ExitProcess
InterlockedDecrement
GetProcessHeap
SetLastError
GetModuleHandleW
LCMapStringW
GetCurrentProcessId
FileTimeToDosDateTime
GetEnvironmentStrings
GetStdHandle
IsBadReadPtr
lstrlenW
IsDBCSLeadByte
VirtualProtectEx
GetOEMCP
GlobalAlloc
UnhandledExceptionFilter
GetConsoleMode
VirtualAlloc

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ