1265f758786cfd7227aaf5f2fd3c8e32 | Triage

Sharing

General

Target

1265f758786cfd7227aaf5f2fd3c8e32
Size

1.3MB
MD5

1265f758786cfd7227aaf5f2fd3c8e32
SHA1

bb9b9fe2ed9235884292653d8547f014f7c02fb9
SHA256

a215b6e9b24c9fbb322fc36cfda39e40e6e5c39a29fcfff32317c24626a10a01
SHA512

bb7a8dae2572b305ae04c4e671f5cbe4151f0a17f186346234de810517fd2726ff4bd375a12ef4b30afac8ecc7b2976e83da391928ef22398c9faf1241024fa7
SSDEEP

24576:jSYsngzw/GPjRuIPQplW/pV2FQ2sTnSeqNVMG3Ex53WeM:jSHnilRuIPQplW/pIS2YTG3EH36

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1265f758786cfd7227aaf5f2fd3c8e32

Files

1265f758786cfd7227aaf5f2fd3c8e32
.exe windows:4 windows x86 arch:x86

91999a0afcafba4680f3cd3fc40c0657

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadResource
GetACP
TlsFree
GetStartupInfoA
GetTimeFormatW
SetConsoleCP
GetLocaleInfoW
GetTickCount
GetOEMCP
GetLocaleInfoA
DeleteCriticalSection
CopyFileA
ExitProcess
IsValidCodePage
ReleaseMutex
DeleteFileW
GetSystemTimeAsFileTime
SetStdHandle
VirtualProtect
InitializeCriticalSection
SetLastError
HeapAlloc
CreateFileA
GetCommandLineA
LocalReAlloc
GetModuleHandleA
GetCurrentThreadId
CreateSemaphoreW

advapi32

CryptAcquireContextW
RegOpenKeyW
RegDeleteKeyW
RegCloseKey
RegEnumKeyExW
RegCreateKeyExA

user32

DestroyWindow
UnregisterClassA
GetWindowTextLengthW
LoadImageW

lz32

LZClose

msvcrt

__setusermatherr
wcstoul
iswdigit

gdi32

SetTextAlign
SetBkColor

ole32

CoCancelCall

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 53KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 118B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ