16fb453fb9b7703aa90fd618f2730c61 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16fb453fb9b7703aa90fd618f2730c61
Size

185KB
MD5

16fb453fb9b7703aa90fd618f2730c61
SHA1

a6f6915d796537c912780d55696933b9c4cb3157
SHA256

fc7dfc62aebc75a95111e27f769a1bb853ee174dc312a75d0f72f47747a0d08b
SHA512

58cc0931ae3ac991edd28d169a9e0176f6e0400dca0112625e79e7f8f18f7d7c3a339131846a0c505c219be54789bf2da94452995a83f121915e1c94014a7351
SSDEEP

3072:KPaIGDBcTsMKzRSTV1c6LcEJIWVXXmdu/D7A8U0ykSmCA2wdHK6LgQycaQiuWf:K34BSsBzRSTV1pLce7WdiDc8UECA2wML

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16fb453fb9b7703aa90fd618f2730c61

Files

16fb453fb9b7703aa90fd618f2730c61
.exe windows:4 windows x86 arch:x86

e049f2a94471c9a6ce6fc5c5c242f975

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomW
ReadFile
GetThreadLocale
GetOEMCP
WideCharToMultiByte
SetFilePointer
VirtualProtect
GetStringTypeA
GetDiskFreeSpaceA
FlushFileBuffers
GetFullPathNameA
FreeEnvironmentStringsA
SetUnhandledExceptionFilter
WriteFile
CreateFileA
GetEnvironmentStringsW
EnumResourceNamesW
LCMapStringA
FindFirstFileA
GetCPInfo
GetStringTypeExW
UnhandledExceptionFilter
GetFileAttributesA
GetEnvironmentStrings
LCMapStringW
IsBadCodePtr
IsBadReadPtr
FreeEnvironmentStringsW
GetStringTypeW
SetStdHandle
MulDiv

rpcrt4

RpcStringFreeA

shlwapi

SHGetInverseCMAP
PathAppendA
PathIsContentTypeA
PathIsFileSpecA
SHCreateStreamOnFileEx
PathCreateFromUrlW

Sections

.text
Size: 95KB - Virtual size: 238KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ