430fec25e81576f70bc51031cad640ac | Triage

Sharing

Copy URL Twitter E-mail

General

Target

430fec25e81576f70bc51031cad640ac
Size

27KB
MD5

430fec25e81576f70bc51031cad640ac
SHA1

30cb8a3366b89c00a323095e789d93ee832d2bfa
SHA256

83ac31b4b4e60b9dc5f5e10aff578270a8acfddfa33b46e4b0cb6af3221c9951
SHA512

510c7815a8d030c93940f7739d51fd28b81a0281c30718e16756041878e49f6c332c5e195708ac05a6326fa784f5390d6a8e473a163695a7f569fbabce9b03dd
SSDEEP

192:wLUYha6yfhYY0ptunUhno2L6TfUlOiU4xVYwF/s:IifL0uUZZL6ToVYwFk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
430fec25e81576f70bc51031cad640ac

Files

430fec25e81576f70bc51031cad640ac
.exe windows:4 windows x86 arch:x86

82440012669ece65b284016549c5473c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomA
GetConsoleCP
CancelWaitableTimer
ReleaseMutex
GetThreadPriority
VirtualAlloc
CreatePipe
CompareStringA
GetModuleHandleA
GetOEMCP
GetLargestConsoleWindowSize
GetUserDefaultLangID
CreateMutexA
GetExitCodeThread
GetThreadTimes
GetThreadLocale
IsDBCSLeadByte
GetDefaultCommConfigW
TlsFree
TlsGetValue
SetEvent

user32

GetWindowTextA
GetSystemMetrics
IsWindowVisible
ReleaseDC
GetDC
InvalidateRect
ShowWindow
GetClassNameA
ValidateRect
GetForegroundWindow
GetFocus
IsIconic
CloseWindow
GetClassInfoExA
ReleaseDC
GetWindowTextLengthA
RegisterClassA
GetActiveWindow
GetWindow

tapi32

MMCSetPhoneInfo
MMCShutdown
MMCSetServerConfig
MMCInitialize
MMCSetLineInfo

lpk

LpkInitialize

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ