319b0676f25c095c888c80110e24d52d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

319b0676f25c095c888c80110e24d52d
Size

125KB
MD5

319b0676f25c095c888c80110e24d52d
SHA1

f43815aa9ed3c20ece72f14e0f6fc01972bcfacc
SHA256

c26f3cc54c125861fe70bc0c3e1ccd0602c3556fdd685ab1f5ea2515eb94a418
SHA512

eba5fdb9522a983cf74f4ef7891ae0d53cb157b1400aaff187adcbecd0459e795f00554799d55f198b07a46229f2fc8724a39005336039801b177e2acb6bd08e
SSDEEP

3072:QNIxEeDIA54koCu3MHA1/Z1ZzsGseQbBlb91KiN62dX1pWFs/BTT/SG:7xVIDoFAtZ5seQbf7BNhFoFsxT6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
319b0676f25c095c888c80110e24d52d

Files

319b0676f25c095c888c80110e24d52d
.exe windows:4 windows x86 arch:x86

bf62525c9ddec519bfdf386499f37c94

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreatePenIndirect
CreateFontIndirectA
GetClipBox

kernel32

VirtualAllocEx
LoadLibraryA
SetThreadLocale
ExitProcess
IsBadReadPtr
SetLastError
SizeofResource

comdlg32

GetSaveFileNameA
GetFileTitleA
FindTextA
GetOpenFileNameA
ChooseColorA

user32

GetCursorPos
GetClipboardData
GetMenu
DrawMenuBar
GetClassNameA
LoadCursorA
IsWindow
GetClientRect
IsMenu
GetCursor
IsCharLowerA

ole32

OleRun
CoRegisterClassObject
CoUninitialize
CoFreeUnusedLibraries
MkParseDisplayName
StringFromIID
WriteClassStm

Exports

Exports

_wL9itTB
ACqg1V0QzAqzO
srWQXycDR
oW27sUTV@20

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ