1fda83391a3ecd8aee11c72242427118 | Triage

Sharing

General

Target

1fda83391a3ecd8aee11c72242427118
Size

179KB
MD5

1fda83391a3ecd8aee11c72242427118
SHA1

b162627502d183a2bcc65381e13ff3d3955becab
SHA256

0ce5bf414a9e0238ebf5f8f62c370ad81e2d4f1deb8a04c9b45742e87882b2ba
SHA512

313246df4652b36a114938da66ae4383942872ade614df9a60d8622a121821ce0def0a86c8d40d80846743aae7da8a12f2603a24984960daf8b89c2a7a2d1329
SSDEEP

3072:sgpx7vQnUqzXDPsF4mulUIuvgFMEuUGhTAAs38pXfKffiOVhEfwVi8Ei5F+I26ap:sgplKv/PsimyUIub7UdAs38pvKnjEfwa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1fda83391a3ecd8aee11c72242427118

Files

1fda83391a3ecd8aee11c72242427118
.exe windows:4 windows x86 arch:x86

dd9ec0ba399067705af6b7126a7e093f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalGetAtomNameW
IsDBCSLeadByte
ReadFile
GetCurrentProcessId
WriteFile
FindNextFileA
WideCharToMultiByte
lstrlenA
EnumResourceLanguagesW
EnumResourceTypesA
QueryPerformanceCounter
CreateMailslotA
GetCurrentThreadId
FindFirstFileA
SetFilePointer
GetModuleHandleA
GlobalHandle
FindClose

oleacc

AccessibleChildren
CreateStdAccessibleProxyA

newdev

UpdateDriverForPlugAndPlayDevicesA

Sections

.text
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ