9b06af982da13a032e29a0493fb0645b821ab379e6fc69d1c755a8b9d4cfafb7[.]exe | Triage

Sharing

General

Target

9b06af982da13a032e29a0493fb0645b821ab379e6fc69d1c755a8b9d4cfafb7.exe
Size

513KB
MD5

dc8bc6ccd74d328c9f641c282a287feb
SHA1

a56f0a1acc9efb8c3e3de608bb8a2e840073f5c3
SHA256

9b06af982da13a032e29a0493fb0645b821ab379e6fc69d1c755a8b9d4cfafb7
SHA512

36cc0402fa295a6bcaa43da6305aa2ea1a8547bc6985b38bb465c53217c05b1819c28818533ef80c0b056b8d5bfc2bc66ac95683f4a11c78e05d29a8a9a8036f
SSDEEP

6144:el2uHQRByruC6NFpkt4nuTU1d76R27lpiRHfdXluzGjJOCcoGFccMWDOJraQ3wBF:en40IOc/RqAzx5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9b06af982da13a032e29a0493fb0645b821ab379e6fc69d1c755a8b9d4cfafb7.exe

Files

9b06af982da13a032e29a0493fb0645b821ab379e6fc69d1c755a8b9d4cfafb7.exe
.dll windows:6 windows x86 arch:x86

0b8c2e06f7a5122b7d7f9925797c3247

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E_JIHK0E.pdb

Imports

msvcrt

_amsg_exit
_initterm
free
malloc
_XcptFilter

kernel32

SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
RtlUnwind
InterlockedCompareExchange
Sleep
InterlockedExchange

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 414KB - Virtual size: 413KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 90KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE