2823f6a26ee4218aca5e084987f422ea83ed25a001207cf37a829d23afc9eb79 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2823f6a26ee4218aca5e084987f422ea83ed25a001207cf37a829d23afc9eb79
Size

148KB
MD5

99b2277472f531e1cc71120a7f31c4ec
SHA1

4e7b43a357b5d3d949ecbff41a00eeb52f0c4a17
SHA256

2823f6a26ee4218aca5e084987f422ea83ed25a001207cf37a829d23afc9eb79
SHA512

e1e59b0575c6725633ed38d440d989f50dfd35115d7b22cb4597139d51b64899ae7978a85ffd13094167dbc184222c1c3053059964c8ee30ef8931f0388188b1
SSDEEP

1536:4/arVZD79ZjaJDFjBGdJxz6//tf/nnNxJxz6//tf/nnNu:qaRZyjARa/5nlRa/5ns

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2823f6a26ee4218aca5e084987f422ea83ed25a001207cf37a829d23afc9eb79

Files

2823f6a26ee4218aca5e084987f422ea83ed25a001207cf37a829d23afc9eb79
.exe windows:4 windows x86

221e85f9c3a09978def2e3a64b1284ed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FormatMessageA
GetLastError
CloseHandle
WriteFile
SetFilePointer
CreateFileA
GetLocalTime
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
GetFileSize
IsBadReadPtr
ReadFile
GetModuleHandleA
OutputDebugStringA
GetStartupInfoA

user32

GetDlgItem
EnableWindow
SendDlgItemMessageA
SetDlgItemInt
DestroyWindow
DefWindowProcA
PostMessageA
PostQuitMessage
LoadIconA
DialogBoxParamA
CharUpperA
MessageBoxA
GetDlgItemTextA
GetDlgItemInt
SetDlgItemTextA

comdlg32

GetSaveFileNameA
GetOpenFileNameA

msvcrt

malloc
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
vsprintf
sprintf
rand
_except_handler3
free
strstr
strrchr
srand
time

comctl32

InitCommonControlsEx

Sections

.text
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ