1452bc073be0f53d6427d6c3c0216b76 | Triage

Sharing

General

Target

1452bc073be0f53d6427d6c3c0216b76
Size

288KB
MD5

1452bc073be0f53d6427d6c3c0216b76
SHA1

50b56ff445180ddd870bac64c4f12fac5fc02262
SHA256

dcb231f4d4d32fd4818fd71cc510399e55b0a42db20ed975f7b5952b47dc6c2e
SHA512

c672f2a97801144f628af8ed88ba05989d234c161225d240fffd104cc2e5f33314df5d63f201a9300a7f6ef948f54b364428e0046aa133f5d4298ac28f56692c
SSDEEP

6144:LK6fCbD7uiPBIYpl9XuEV+WaOKx/fKVISZsZzQ6rOqZp5Sg0mKnF1:2PbvvBIYhXuEsWmx/fKS7Zr0nF1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1452bc073be0f53d6427d6c3c0216b76

Files

1452bc073be0f53d6427d6c3c0216b76
.exe windows:4 windows x86 arch:x86

f9c6e17a6ca3f9239a22dcd91170f343

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

version

VerQueryValueA

gdi32

UnrealizeObject

ole32

CreateStreamOnHGlobal

comctl32

ImageList_SetIconSize

shell32

Shell_NotifyIconA

wininet

InternetSetOptionA

Sections

CODE
Size: 276KB - Virtual size: 772KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE