15fc997762e8fd9d0b80b136994e1dac | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15fc997762e8fd9d0b80b136994e1dac
Size

117KB
MD5

15fc997762e8fd9d0b80b136994e1dac
SHA1

0a7726175134ccd2170fc474565d00095ac3ba51
SHA256

618c95e963a529ea3c27b63ebecbda3fb07a0031ac9cda8521dec7658f4adde3
SHA512

f4f3b5ea3d68847f24c403da1fd81589213640675ee5d94465713d9b941f7b5c7be0ea5243dd81fdd3dc6691b39dccc5b3d59df226ad3eb76e29acbbd4304f17
SSDEEP

1536:lZFU2ry492PbS/aba5koEGrMwpWHcL0Zg7dgqluRJ5zDNgY242friB6AlO:BUru2PpGk0IwpWHKtuvbB7l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15fc997762e8fd9d0b80b136994e1dac

Files

15fc997762e8fd9d0b80b136994e1dac
.exe windows:4 windows x86 arch:x86

f53376be5967073ec28f37324194d24a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetParent
GetSystemMetrics
TranslateMessage
GetDC
CharNextA
GetDesktopWindow

kernel32

lstrcmpiA
GetModuleHandleA
GlobalFindAtomA
DeleteFileA
lstrlenA
QueryPerformanceCounter
lstrcmpiW
CopyFileA
GetSystemTime
lstrlenW
RemoveDirectoryW
FindClose
RemoveDirectoryA
lstrcmpA
GetWindowsDirectoryA
GetCommandLineA
VirtualAlloc
VirtualFree

gdi32

SetTextColor
SaveDC
GetPixel
DeleteDC
SetMapMode
RectVisible
LineTo
CreateFontIndirectA
SetTextAlign
GetClipBox
SelectObject
SetStretchBltMode
CreateSolidBrush
GetTextMetricsA
GetObjectA
SelectPalette
CreateCompatibleDC
RestoreDC
GetDeviceCaps
GetStockObject
DeleteObject

glu32

gluNurbsCallback

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ