10be8e5069fc3033a47e18a492679fe3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

10be8e5069fc3033a47e18a492679fe3
Size

194KB
MD5

10be8e5069fc3033a47e18a492679fe3
SHA1

b2d1872dd6ea0868482c3c9b3b37ecf13bbf392a
SHA256

55044fc65985d1afc5e88c7c045a375b96635280621cbcb621cca9445e832dba
SHA512

781de5b064bbe25f744d89adcc5e08609d7766ef09866160fcafb037f9494eec42803914858c95aaaeeac7ee7d483007e78c384ea8b5ab81bff167f145a79a47
SSDEEP

3072:P+f0aKAhXj487UBCaiVKLya8Dogq//d+zEQFLESrtWYRQ6:E09AZ4sa8DoTnd+zEKLx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
10be8e5069fc3033a47e18a492679fe3

Files

10be8e5069fc3033a47e18a492679fe3
.exe windows:4 windows x86 arch:x86

6c6bbfb79816aeba0a2a8d10081f8ed7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rpcrt4

NdrFixedArrayFree
UuidCreate

shell32

Shell_NotifyIconA

user32

RedrawWindow
ClipCursor
FindWindowA
TrackPopupMenuEx
DestroyMenu
CreatePopupMenu
GetDesktopWindow

winmm

timeEndPeriod

kernel32

FlushInstructionCache
FindFirstFileA
MapViewOfFile
DuplicateHandle
EnumResourceNamesW
SetEnvironmentVariableW
UnmapViewOfFile
GetModuleFileNameW
FindResourceExA
FindClose

Sections

.text
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 764B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ