25bd659e71d8c58319b9b9b86b22e70c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

25bd659e71d8c58319b9b9b86b22e70c
Size

16KB
MD5

25bd659e71d8c58319b9b9b86b22e70c
SHA1

b29c3c5cd7ad48b79f8b973ea6c4d4af3a0518bf
SHA256

818c131168c61ffd0e6ad844f2b8b25c70982bae0169de38fbfef05bfa051104
SHA512

694294d8d57818069233f6889fe47198ec1cfece8e650019edccb188b9926fb6be93a30c30b258cc825a840c0ed245cdde7cdceb1e11adb0fdff6c1f183d8605
SSDEEP

192:YZZJgP5vTIql3zAZyH9OcFRJKu9hAjjRRkMg5cRA:YwlIql3xHgcPj9hAXnkMjA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25bd659e71d8c58319b9b9b86b22e70c

Files

25bd659e71d8c58319b9b9b86b22e70c
.exe windows:4 windows x86 arch:x86

01eac3a80802586c4c642a503591c2cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReleaseMutex
GetModuleHandleA
GetHandleContext
TlsFree
GetUserDefaultLangID
CreatePipe
GetThreadLocale
SetEvent
GetThreadPriority
VirtualAlloc
GetOEMCP
GetThreadTimes
GetExitCodeThread
CreateMutexA
IsDBCSLeadByte
CompareStringA
GetLargestConsoleWindowSize
CancelWaitableTimer
GetConsoleCP
TlsGetValue
AddAtomA

user32

IsIconic
CloseWindow
GetWindowTextA
RegisterClassA
GetForegroundWindow
ShowWindow
ValidateRect
GetWindowTextLengthA
InvalidateRect
GetSystemMetrics
GetWindow
GetClassNameA
GetActiveWindow
IsWindowVisible
GetClassInfoExA
ReleaseDC
GetFocus
ReleaseDC
GetDC

dsound

DllCanUnloadNow
GetDeviceID
DirectSoundEnumerateA
DirectSoundCreate
DllGetClassObject

mscms

CheckColors

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ