0575c6ddb41121b93efab0740a32ffdc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0575c6ddb41121b93efab0740a32ffdc
Size

109KB
MD5

0575c6ddb41121b93efab0740a32ffdc
SHA1

78f97e17f6c7246692240c8bdfd05ed6e160414f
SHA256

db7e5e8d7e9739fb5c4e32fa6037bee806c2c64aca5aee433958618052d99148
SHA512

2ce181be0206a4996f68149d993098e4c74b4469305efedc6a2cb6d76eb06f2d505af4e5817eff4833ad417207df29f9debdfdd6bb235ed995bded9062942527
SSDEEP

1536:5pcVkv1DNuhElKZLR84PLkvyjQYPk7pONlYxvl3H6EoCl8Xjm:5WVk9B1Y8mLfQY0Nl8Xjm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0575c6ddb41121b93efab0740a32ffdc

Files

0575c6ddb41121b93efab0740a32ffdc
.exe windows:4 windows x86 arch:x86

5a217f395d76f38b7ec299abeeaeb1e9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateSolidBrush
RestoreDC
DeleteObject
GetPixel
GetObjectA
SelectPalette
SetTextAlign
GetDeviceCaps
RectVisible
SetMapMode
DeleteDC
CreateCompatibleDC
GetStockObject
GetClipBox
SetTextColor
SetStretchBltMode
CreateFontIndirectA
LineTo

kernel32

GetCommandLineA
RemoveDirectoryA
lstrcmpA
CopyFileA
lstrlenW
VirtualAlloc
QueryPerformanceCounter
GlobalFindAtomA
lstrcmpiA
VirtualFree
lstrcmpiW
GetModuleHandleA
DeleteFileA
GetWindowsDirectoryA
RemoveDirectoryW
FindClose
GetSystemTime

user32

GetDesktopWindow
GetSystemMetrics
GetDC
TranslateMessage
GetParent
CharNextA

glu32

gluNurbsCallback

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ