1e2401070aaf234d2d167ea989364885e11fc52ea542355bfc87e10699b2b945 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1e2401070aaf234d2d167ea989364885e11fc52ea542355bfc87e10699b2b945
Size

15KB
MD5

0fa22e99077cec812eb75971238dea35
SHA1

2ae18fa436c4e5fbf6f8b24ddfcadc44676e9696
SHA256

1e2401070aaf234d2d167ea989364885e11fc52ea542355bfc87e10699b2b945
SHA512

d852897b5d9a8871385da96e3bbad1615bace3f15d4ebf65cf322131b4527c8fd821a9c8cb1bd92bfb283dc9ec066f663979b853701a94e4042a8bbecdf8c0f9
SSDEEP

192:b8DfOGztpFEi19Bi84R4JIT+ojJGYtiMo/v581Gc:b+fOGhpF9jBib+JIT+oUsiMAv50

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1e2401070aaf234d2d167ea989364885e11fc52ea542355bfc87e10699b2b945

Files

1e2401070aaf234d2d167ea989364885e11fc52ea542355bfc87e10699b2b945
.dll windows x86

57d8c267f92579f0eedd02f56bfbc0c0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
MulDiv
lstrcpyA
GetModuleHandleA

user32

UnregisterHotKey
SetWindowLongA
SetCapture
SendMessageA
ScreenToClient
RegisterHotKey
LoadBitmapA
GetSysColor
GetDC
GetCursorPos
CreateWindowExA
CallWindowProcA
wsprintfA
ReleaseCapture

shell32

DragFinish
DragQueryFileA
DragAcceptFiles

comctl32

InitCommonControls
ImageList_BeginDrag
ImageList_Create
ImageList_Destroy
ImageList_DragEnter
ImageList_DragLeave
ImageList_DragMove
ImageList_DragShowNolock
ImageList_EndDrag
ImageList_Add

gdi32

CreateFontA
DeleteObject
GetDeviceCaps
TranslateCharsetInfo

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 884B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE