06e101f8826b63ae62a2c43e8f23bd9d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

06e101f8826b63ae62a2c43e8f23bd9d
Size

75KB
MD5

06e101f8826b63ae62a2c43e8f23bd9d
SHA1

bef283f740530b5b9b41cec7fed64f43e1873a24
SHA256

8631e272ad84fc5143ccbf24d067d53f379bfbb3df5b1e9ff1bd194d3cc75f52
SHA512

b6de8b065333f1308a83ff373d66371c0281f13a2f5baf6075f6cb575e0bb7f50e0f37facf147577aee4c05072c74f6267353e2f080f55c9633ea369358b52e3
SSDEEP

1536:GzSyD78xqwSToRmRTzobJFMply/RRt0s51OiBtzRqhzVq8e9f/:Pe8YwSEQRPobJ2g10Bql/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
06e101f8826b63ae62a2c43e8f23bd9d

Files

06e101f8826b63ae62a2c43e8f23bd9d
.exe windows:4 windows x86 arch:x86

3015d0e0bdeb16a5a96d671f2c11c4ab

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

PrintDlgExA
LoadAlterBitmap
GetSaveFileNameW
GetFileTitleW

user32

UpdateWindow
SetPropA
SetForegroundWindow
GetWindowDC
GetMenu
DrawMenuBar
DeferWindowPos
SetFocus
InflateRect
ModifyMenuA
IsWindowVisible

msi

MsiSetTargetPathW
MsiRecordReadStream
MsiMessageBoxW

kernel32

GetModuleHandleA
GetACP
FreeResource
FindNextVolumeW
FileTimeToLocalFileTime
ExitProcess
DisconnectNamedPipe
CreateSemaphoreA
CloseHandle
AddAtomA
UpdateResourceW
SetComputerNameExW
OutputDebugStringA
OpenEventA
HeapCreate
HeapAlloc
GetVersionExA
GetStartupInfoA
GetOEMCP
GetCommandLineA

oledlg

OleUIBusyW
OleUIEditLinksA
OleUIChangeIconA

dbghelp

FindExecutableImageEx
SymGetSymFromName
SymLoadModuleEx
sym
SymEnumSym

comctl32

FlatSB_SetScrollRange
ImageList_Destroy
ImageList_EndDrag
InitMUILanguage

ole32

CoTaskMemAlloc
CoFileTimeNow
CoCreateInstance
CreateAntiMoniker

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 918B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ