18559f2ca0c78af89653e822d0c72f86 | Triage

Sharing

General

Target

18559f2ca0c78af89653e822d0c72f86
Size

212KB
MD5

18559f2ca0c78af89653e822d0c72f86
SHA1

8b319707e1c7d54f809be40df03b4aea29eba9a9
SHA256

c6386e96945278499418e9cfb66c637184cccdf3721aed60c51e9b8d3ba9ae7d
SHA512

fb0d29fa994fb41d63e0cf65181a2e6b4ea38bcb0b29ee03b8b3a28ecc8aa1e4092e6a5af304ece541734d2824431abe6c841094c05d8c9956f48b9a6220db30
SSDEEP

1536:oov5lgxuPnprADYUx9MONcVpEDh53DsW7AVQLLFcZ3PNw75yPHauOltLE/2T/wi:/HJKYtOZL3w8AYxcNlY5aHaXltLE4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
18559f2ca0c78af89653e822d0c72f86

Files

18559f2ca0c78af89653e822d0c72f86
.exe windows:5 windows x86 arch:x86

fdbed68fc5a561c2e4af720f85ad715c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

AppendMenuW
GetWindowTextA
GetWindowTextLengthA
GetScrollInfo
GetScrollPos
DrawTextW

advapi32

RegDeleteKeyW
RegEnumKeyW
RegQueryValueW
RegDeleteValueW
RegCreateKeyA
RegQueryInfoKeyW
RegOpenKeyExA

kernel3�dl�

FindClose
ExitProcess

Sections

.fdek
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.jkcol
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gkak
Size: 143KB - Virtual size: 407KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lkkl
Size: 512B - Virtual size: 506B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ