051ebca88b0dc568daf1ec7fd1891d6c | Triage

Sharing

General

Target

051ebca88b0dc568daf1ec7fd1891d6c
Size

138KB
MD5

051ebca88b0dc568daf1ec7fd1891d6c
SHA1

f249a35827ae0e9648eaa93d87de47dd2334b0df
SHA256

c1b8b002a0d6521d8bbb9c779e462ad4a913c83cd4b5e998fa0a90701c1bd1f8
SHA512

d08823042d36d6305fb20eacaa055ec91c57416b676187a715f5f96e785eae26411d4e6adb28eeacb1240752e81ce9a56cc28b876cee1bb42475099af72b27cd
SSDEEP

3072:faB+SY0J90/rVbBvdRu803b/tk9yMJSTUrA2u3Zjv:w+ShJ90z1RG3xWSTdX3h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
051ebca88b0dc568daf1ec7fd1891d6c

Files

051ebca88b0dc568daf1ec7fd1891d6c
.exe windows:4 windows x86 arch:x86

d53a8be0e055319b49776bc6893af138

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow
CharLowerA
GetWindowLongA
GetMenu
GetParent
CharUpperA
GetWindowRect
GetWindowPlacement
GetTopWindow
LoadBitmapA

comctl32

ImageList_Create
ImageList_DrawEx

shlwapi

PathFileExistsA
SHQueryValueExA
PathIsContentTypeA
SHGetValueA

gdi32

CreateCompatibleBitmap
CreateBrushIndirect
CreateBitmap

kernel32

SetThreadLocale
GlobalDeleteAtom
SetEvent
GetCommandLineA
LockResource
LocalReAlloc
HeapFree
GetSystemDefaultLangID
GetStartupInfoA
GetCPInfo
IsBadReadPtr
GetModuleHandleW
InitializeCriticalSection
GetOEMCP
GetACP
lstrcmpA
LoadResource
GetLocalTime
GetLocaleInfoA
GetProcAddress
GlobalFindAtomA
ExitProcess
FindFirstFileA
VirtualAllocEx
GetModuleFileNameA

Exports

Exports

_1RjcNuaaJ_6@20
YjUStOv0gOr
UCqIWEy@4

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 122KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1004B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ