f54060ed6031c2a151da6da4d434648e4807cfb82cc798b834de2a12b4fcd7fb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f54060ed6031c2a151da6da4d434648e4807cfb82cc798b834de2a12b4fcd7fb
Size

125KB
MD5

fcaca9e3242e5cd27555d4b77ee0f822
SHA1

521b9a16ec15d4cb07afec7fac97816769be49bb
SHA256

f54060ed6031c2a151da6da4d434648e4807cfb82cc798b834de2a12b4fcd7fb
SHA512

49c7ca230b543c4464b6a83e3a319ce5baa67168b4eb95f8e2791df30bc5a7fc79fc656697c847be0c95ce683d3674aff6ccda28aec91af54e3dcc9815eea956
SSDEEP

3072:11bk5/s6RNcD9nF6RC4JrbZTnekDBP5pwoKpaRTS:11I3fsnI9bV9vwkRm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f54060ed6031c2a151da6da4d434648e4807cfb82cc798b834de2a12b4fcd7fb

Files

f54060ed6031c2a151da6da4d434648e4807cfb82cc798b834de2a12b4fcd7fb
.dll windows x86

ba130d4ea6ce7011da37272270707d76

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

CreateDialogParamW

gdi32

RoundRect

comdlg32

ChooseFontW

ole32

CreateStreamOnHGlobal

shared

_stricmp_utf8_ex@16

gdiplus

GdipCreateBitmapFromScan0

Exports

Exports

foobar2000_get_interface

Sections

.text
Size: 118KB - Virtual size: 356KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE