221805700ff17e9bc2df9f841da5bc5e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

221805700ff17e9bc2df9f841da5bc5e
Size

144KB
MD5

221805700ff17e9bc2df9f841da5bc5e
SHA1

7c5058f6306597d9987c706015e8e0ccd9592c39
SHA256

e04108607e860eb150177479e12acfcc3f8edc7a6f44568b96573083802f15d7
SHA512

9d63b8fb96b1f484f58aa3b32f65b6043d99d1ab0915fe6aa874f69469519a353036bcb1291f103cf5f770b84f7b42b9d69d3499500e88845c81ac1d5dc2abe8
SSDEEP

3072:LDNcufKSr4YJ/q2R5DBOo4j2fnrjmqFwc3StUYWFUrtasmVqYcyntZqTQYYYHYM:LTPr1JSK5l4jymqFdsU5UrRmMYcR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
221805700ff17e9bc2df9f841da5bc5e

Files

221805700ff17e9bc2df9f841da5bc5e
.exe windows:5 windows x86 arch:x86

950deedb4d935b8215e0a1433d624268

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcschr
isprint
strrchr
iswdigit
strpbrk

user32

LoadImageW
GetWindow
FillRect
SetScrollInfo
GetWindowDC
ShowOwnedPopups
SetForegroundWindow
RegisterClassA
GetClassInfoExA
InternalGetWindowText
RedrawWindow
ReleaseDC
GetKeyboardLayoutNameW
OpenWindowStationA

kernel32

LCMapStringA
ReleaseMutex
HeapReAlloc
EscapeCommFunction
WinExec
GlobalReAlloc

gdi32

GetPaletteEntries
EndPath
TextOutA
SetWindowOrgEx
PtVisible

Exports

Exports

?GetModuleHandleA@@YGXPAD@Z

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 140KB - Virtual size: 448KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ