5129f83e8b4fc95f8832307fe82875a8f31349625d3333b27e50007354f0f22aN[.]exe | Triage

Sharing

General

Target

5129f83e8b4fc95f8832307fe82875a8f31349625d3333b27e50007354f0f22aN.exe
Size

96KB
MD5

ca3c01db3d967edf3d69a5d99266b880
SHA1

078f6b20d345d895fdb61cc1874ff6bdc44e91a3
SHA256

5129f83e8b4fc95f8832307fe82875a8f31349625d3333b27e50007354f0f22a
SHA512

d70c02dd3f4e4d26d137f4fa971b6aa5577930f180e1ec98c19ee6a24a28936f17d3388671a8c2851ccf7905dc5eb25413c8bddd85ef383bb800f9c748152186
SSDEEP

1536:JnAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxz:JGs8cd8eXlYairZYqMddH13z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5129f83e8b4fc95f8832307fe82875a8f31349625d3333b27e50007354f0f22aN.exe

Files

5129f83e8b4fc95f8832307fe82875a8f31349625d3333b27e50007354f0f22aN.exe
.exe windows:4 windows x86 arch:x86

850bf254c76e5c8effedc1f08eb6c411

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

user32

GetClassNameA

Sections

.MPRESS1
Size: 90KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE