1ad91f9f02b7e365ea44338e70a9e2c7 | Triage

Sharing

General

Target

1ad91f9f02b7e365ea44338e70a9e2c7
Size

40KB
MD5

1ad91f9f02b7e365ea44338e70a9e2c7
SHA1

1bfc112fe1109e6ba285c093e14f27ec7b5dff58
SHA256

3fc763b2add66096f522e02114a600e036b4c1fcfb28a4f873035327d01e72af
SHA512

f08bbbe018468ad5e9df896d73efe40836ea8dd6705a6d761374e13a3ee67eba5ac35b75923da31bf5616d5ed370071641a4355e88272e7f34b3b59c9611e3b9
SSDEEP

768:WJbk+X+9awdJUXsor0HVVhcR6JHSshMOUouj:WJ2awdyXVeVVmRuJh0ouj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1ad91f9f02b7e365ea44338e70a9e2c7

Files

1ad91f9f02b7e365ea44338e70a9e2c7
.exe windows:4 windows x86 arch:x86

d9177aef672c272bb3a4d3d042477c21

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringW
CompareStringA
GetStringTypeA
LCMapStringW
LCMapStringA
GetWindowsDirectoryA
Sleep
GetStringTypeW
GetModuleFileNameA
HeapFree
HeapAlloc
GetTimeZoneInformation
GetSystemTimeAsFileTime
ExitProcess
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersion
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
WideCharToMultiByte
GetLastError
CloseHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
RtlUnwind
WriteFile
SetStdHandle
FlushFileBuffers
CreateFileA
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA
SetFilePointer
SetEndOfFile
ReadFile
MultiByteToWideChar
SetEnvironmentVariableA

user32

GetAsyncKeyState
GetForegroundWindow
GetWindowTextLengthA
GetWindowTextA
GetKeyState

advapi32

RegSetValueExA
RegCloseKey
RegCreateKeyExA

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE