081f4d5e0a75d1c95b22a72588954e58 | Triage

Sharing

General

Target

081f4d5e0a75d1c95b22a72588954e58
Size

751KB
MD5

081f4d5e0a75d1c95b22a72588954e58
SHA1

4f1f81f1e3870e58fefbdb25ee215659e081fcf3
SHA256

62cea71b5f014a2b7ab4c4fddcbcc0159b81419c6c17bde754490d864feea750
SHA512

ecf405ea06cf31688cf3947046c5bc144e7f809e8508d65e91d752ecb18afd4fc2cd62fbf3de29c2d5867c6f677327fdd6bdb2d3e38efcfa7ff96ecb6858247c
SSDEEP

12288:Jl0PiSoa3BfEQe0BU1Gb1yEuIrvfUn8tuIEJUmOso9ZVuhWFKP8KOMSx7JUm3QSx:b0Pn+ksGb8LIrvf3vEJUmMTiIKEueZQI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
081f4d5e0a75d1c95b22a72588954e58

Files

081f4d5e0a75d1c95b22a72588954e58
.exe windows:4 windows x86 arch:x86

845f3b3a20334dffd2efb2ee52f40ff2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
DeleteFileA
CreatePipe
GetModuleHandleA
WaitForSingleObject
RemoveDirectoryA
FindClose
CreateMutexA
WaitForMultipleObjects
GetStartupInfoW
SetLastError
CloseHandle
CreateFileA
GetConsoleTitleA
GetCommandLineW
GetFileAttributesA
HeapSize
GetEnvironmentVariableW
Sleep
GetStdHandle
VirtualAlloc
ResetEvent
GetTickCount
GetCurrentDirectoryA
OpenProcess

user32

DispatchMessageW
MessageBoxA
GetClassInfoA
PeekMessageA
FindWindowW
CallWindowProcW
GetDC
DispatchMessageW
GetDC
GetDC
GetSysColor
FillRect
GetWindowLongA

ureg

??1REGISTRY@@UAE@XZ
??1REGISTRY@@UAE@XZ
??1REGISTRY@@UAE@XZ
??1REGISTRY@@UAE@XZ

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 745KB - Virtual size: 745KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ