082462debd379ace7dc65cbb2c55a1ba | Triage

Sharing

General

Target

082462debd379ace7dc65cbb2c55a1ba
Size

53KB
MD5

082462debd379ace7dc65cbb2c55a1ba
SHA1

dfc545f5459f290a442a944cd4fb60503fc09240
SHA256

e97d2b05ca338c94b8ff916027072743d2f37569a437dfeb5c23348cf695e2ab
SHA512

0e04bda880f1a1c9af7f5acf80c4946f699f37d3ab6f9250dc5e8c6e3837cccbbbac0199816e3e308bf82d5a8f11f06b7098b874f57d24caa016d017bad1f2f0
SSDEEP

1536:2eENI8gfX71k86Kkmis0mBXT01n3NOBY7sswsgmqON4CnA:4gjO86E/0mNT8n3sW7ssgc4CnA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
082462debd379ace7dc65cbb2c55a1ba

Files

082462debd379ace7dc65cbb2c55a1ba
.exe windows:5 windows x86 arch:x86

958a79115aebc8c4cf8a498605ef8ce5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindAtomA
GetLocalTime
lstrlenA
lstrcpyA
GetTempPathA
GetVersion
GetTickCount
CloseHandle
WriteFile
CreateFileA
lstrcatA
lstrcpynA
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
LoadLibraryA
GetTempFileNameA
CreateMutexA
OpenMutexA
ExitProcess
lstrcmpA
GetLastError
GetSystemTime
GetCommandLineA
RtlUnwind
VirtualQuery
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent

user32

GetFocus
IsWindowVisible
GetCursorPos
wsprintfA
ClientToScreen
InflateRect
GetWindowRect
EqualRect
GetCaretPos

shlwapi

SHGetValueA

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE