0245756d5c8c96064b874912fb1a34ae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0245756d5c8c96064b874912fb1a34ae
Size

42KB
MD5

0245756d5c8c96064b874912fb1a34ae
SHA1

51e36803241e56fdeddce6cdf53e080781492ef0
SHA256

3c80b694635d5e8d5025ed2951d9a27096e14eab97cb20b2a56d126c8abb9f7f
SHA512

a91babc236937b75721f17d6929acbf2b77b678244b827621ce58c61c76afcf43cc001a5020b31b1e594252cb9495c405768a3b159dbb55850e4d02d359b16c6
SSDEEP

768:rlJTTHwI0YFEZXyk0XkhnS7pa81DproyqIggPFlc7cEJrmtZijRvza+P:x9HwI4ikKkhnStzBfLPrwcVtMjRvzLP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0245756d5c8c96064b874912fb1a34ae

Files

0245756d5c8c96064b874912fb1a34ae
.exe windows:4 windows x86 arch:x86

6b8314371c2940cc275cfd6cf888e2ef

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CompareStringA
CreateProcessA
ExitProcess
ExitThread
FindResourceA
FreeEnvironmentStringsW
GetACP
GetCommandLineA
GetExitCodeThread
GetLastError
GetModuleHandleA
GetNumberFormatA
GetOEMCP
GetStartupInfoA
GetSystemDirectoryA
GetSystemInfo
GetVersion
HeapAlloc
HeapCreate
HeapReAlloc
IsValidCodePage
LeaveCriticalSection
MultiByteToWideChar
OpenProcess
RtlUnwind
SetLastError
SetThreadAffinityMask
SetUnhandledExceptionFilter
WriteFile
lstrcmpiA

user32

GetPropA
LoadIconA
RegisterClassA
GetMenu
DrawFrameControl
DialogBoxParamA

comdlg32

GetOpenFileNameA

Exports

Exports

ComPlusMigrate

Sections

.text
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ