018e6e8c6550224a1171213dd78ffd3f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

018e6e8c6550224a1171213dd78ffd3f
Size

1.0MB
MD5

018e6e8c6550224a1171213dd78ffd3f
SHA1

1a42792ab0b4d03bdfb878d4170beddaf418e1b9
SHA256

325b2f2d1b42cf66185b7ced95206dd0efac0063b7a3e568d41696f52dc2135e
SHA512

e732444a740a1e66b63916910f289d5d2d6349365e2394fe9c147979d64b51c38d50420c30ba402bced26e5f5a27c61219dca32f5f8a8f0c5271394b6b92ec9a
SSDEEP

12288:FCHMVFSv6SX0v0Sbv3BUeNGordX6phmJvHEtQl6JMaBUjmY2klfVa3zmujWcm4Pv:KC26ZRt/dXWkUQMJUjd2Ot0mujWc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
018e6e8c6550224a1171213dd78ffd3f

Files

018e6e8c6550224a1171213dd78ffd3f
.exe windows:4 windows x86 arch:x86

3e5f87d3837be21aa2de3537658b451d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
CloseHandle
FreeLibrary
GetModuleHandleA
GetFileSize
GetVersionExA

user32

GetWindowRect
DispatchMessageA
GetClientRect
SetFocus
DestroyWindow
TranslateMessage
BeginPaint
GetMessageA
MessageBoxA
DefWindowProcA
PostQuitMessage
ShowWindow
DialogBoxParamA
SetWindowTextA
EndDialog

gdi32

CreateFontIndirectA
GetObjectA
CreateSolidBrush
CreateCompatibleDC
SelectObject
GetStockObject
SetROP2
GetTextMetricsA
PatBlt
GetBkColor
GetPixel

Sections

.text
Size: 1024B - Virtual size: 1018B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ