31bd453c2c41fd899843f8efed4cc61b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

31bd453c2c41fd899843f8efed4cc61b
Size

393KB
MD5

31bd453c2c41fd899843f8efed4cc61b
SHA1

d2a95ff4c7ad9f461db290ec3528aa8efd6e9606
SHA256

bb9e798467901f8ce291594b929cad271165ee9f757be0d54203a8151ca8259d
SHA512

caa3b3b6d29c08e0923880eac75a0e715597a5388b3f875e13d1081e4c092ca748d3d2f87e1e3adc6cb55f0f13042540bce9a0ca821db175501affbe8b4deb6c
SSDEEP

6144:4i6eYLl3GKabNQncHz4NfRIRA6WF/gatSlO92/XzdH0ceAJOBzxIa5i/:4tLll+NvaRI26x4SlxdH0hAkB6a5Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
31bd453c2c41fd899843f8efed4cc61b

Files

31bd453c2c41fd899843f8efed4cc61b
.exe windows:4 windows x86 arch:x86

63ed3308876f2cf0755623442cbef79b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetVersion
Sleep
GetFileSize
lstrlenA
GetTickCount
FreeLibrary
GetLastError
lstrcpyA
GetCommandLineA
LocalFree
GlobalFree
GetModuleHandleA
GlobalAlloc
lstrcatA
GetStartupInfoA
CreateEventA
GetVersionExA

gdi32

CreateFontIndirectA
BitBlt
SetROP2
GetTextExtentPoint32A
GetDeviceCaps
GetPixel
ExtTextOutA
SetPixel
GetStockObject
LineTo
CreateSolidBrush
SetBkMode
SelectObject

msvcrt

toupper
rand
_except_handler3
_exit
__p__fmode
_XcptFilter
_c_exit
__getmainargs
wcslen
exit
__p__commode
memmove
_adjust_fdiv
_acmdln
wcstoul
__set_app_type
_controlfp
wcschr
__setusermatherr
_initterm
__CxxFrameHandler

user32

DialogBoxParamA
GetFocus
SetFocus
DefWindowProcA
CreateWindowExA
ShowWindow
SetWindowTextA
TranslateMessage
MessageBoxA
PostQuitMessage
ScreenToClient

Sections

.text
Size: 512B - Virtual size: 504B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrs
Size: 387KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ