128f87fc3934621dbb7058a33feca709 | Triage

Sharing

General

Target

128f87fc3934621dbb7058a33feca709
Size

169KB
MD5

128f87fc3934621dbb7058a33feca709
SHA1

d63035d8e296b517347eb4557410b84a8107c56b
SHA256

e8542cb9b9856cc4e104d07a83c40b8f77d10f887009118a6c22470de84fa745
SHA512

dd3f02ce5e8fcce48e342399a623fc1d19b7203618648a1a92ffe911f0846ac5139ab4a1c26a31013831a861c279807a01078aa135779a67ae8f9296fc8df229
SSDEEP

3072:VzfSpFf+0kl86whySMHbtqWHbshxK0OjKe/06SWRouLuFdmebkSBV/H7:VzfSPO9whyDIWAhx2Ke/06SWSu4UikS7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
128f87fc3934621dbb7058a33feca709

Files

128f87fc3934621dbb7058a33feca709
.exe windows:4 windows x86 arch:x86

22b536576373203ee337d09b2437f188

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

oleacc

LresultFromObject

user32

GetWindowInfo
RegisterClassExW
CreateWindowExW
LoadCursorW
GetDC
GetParent
MessageBoxW
EndDialog

kernel32

lstrcpynW
GetStartupInfoA
CheckRemoteDebuggerPresent
TlsGetValue
EnumResourceTypesW
InitializeCriticalSection
TlsAlloc
HeapCreate
TlsFree
GetFileType

Sections

.text
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 604B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.apexi
Size: 1024B - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ