24b70a4e23d21145fbe702801d2bdc42 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

24b70a4e23d21145fbe702801d2bdc42
Size

169KB
MD5

24b70a4e23d21145fbe702801d2bdc42
SHA1

ae26464743f4aab9ccadb8fbb137219bebcbac1f
SHA256

cb8ef1f8757dabc14f5a8d2808a6a521f63b53c5bfbf5393ab7b2bea904accb7
SHA512

3778b11d2aa9d5b8921070bc80f54ca68f46b4d4182ab33f731d258af0f39e68b10c2f4c736ad249cb9f1f086ec79c688c36878b904253919b98b58eda393605
SSDEEP

3072:QQp6mlBwglj3hrvbBIzqWlD3DO49qSU03H1Mji+QW4dejPrqsfjuCFR+1cz/:b6QrljRjEq0hrnHKi+QW4dcP2sfij1cz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24b70a4e23d21145fbe702801d2bdc42

Files

24b70a4e23d21145fbe702801d2bdc42
.dll windows:4 windows x86 arch:x86

966ebe610616e96ea7237c65a267dab2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

GetPixel
GetDIBits
GetBkColor

oleaut32

SafeArrayGetUBound
VariantChangeType
SafeArrayCreate
SysFreeString

comctl32

ImageList_Draw
ImageList_Destroy

kernel32

VirtualAlloc
GetVersion
GetVersionExA
IsBadReadPtr
ExitProcess
GetACP
LoadLibraryA

user32

SetTimer
EnableWindow
GetMenu
SetWindowLongA
SetScrollRange
IsCharLowerA
SetWindowLongW
CharNextA

Exports

Exports

9pTbYQom@8
CSFzxOExXforl
JX6vzdQbIo
_ahK6jAb0t6L

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 150KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ