44755b88bdeeb2066afe1a3d200328e3 | Triage

Sharing

General

Target

44755b88bdeeb2066afe1a3d200328e3
Size

168KB
MD5

44755b88bdeeb2066afe1a3d200328e3
SHA1

478a909c9168c37cbc5064e4c5d77501d00d8122
SHA256

e8dea269f7fa5d538c448ad06db9e96961dd58453e8e1087c17e81a30443972f
SHA512

d62037f46b2cdaca84104652ddb4226682f7d25eb8eec6c79ee2a98265095d674edc14eb42208cb956bf35ed85cd411fe534c6936e65586d12d28f1d9008098a
SSDEEP

3072:kaszDd4D7ZQamr3kSV8aIvmwt0tThtZvWtEmSpv9SfhP4QArhIWk9QOBDy/BA6:kxvYya+kSSje73x05SpVSfeQAsaOJ4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
44755b88bdeeb2066afe1a3d200328e3

Files

44755b88bdeeb2066afe1a3d200328e3
.exe windows:4 windows x86 arch:x86

26587471a3b056ae7a2ec20b4b5e44d4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

GetParent
RegisterClassExW
MessageBoxW
LoadCursorW
CreateWindowExW
GetDC
GetWindowInfo
EndDialog

oleacc

LresultFromObject

kernel32

lstrcpynW
HeapCreate
CheckRemoteDebuggerPresent
GetStartupInfoA
EnumResourceTypesW
InitializeCriticalSection
TlsGetValue
TlsAlloc
TlsFree
GetFileType

Sections

.text
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 604B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.apexi
Size: 1024B - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ