37620b0283d69aabe8371e7d090da727 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

37620b0283d69aabe8371e7d090da727
Size

63KB
MD5

37620b0283d69aabe8371e7d090da727
SHA1

d8a67e40ec03ac08cc39c3049ec1e2417161ee43
SHA256

cab0139ac42bb12a81f8b3628532ddec0eab6122be5e16d3e9b0cac9efc5f8e0
SHA512

2b9f213f9b66c5cfa1c256dd92a2f3f5a37ac334cfa332b7e1ccb9f584fa27535ebab779f30972e139bc05c23276c94cbc3e7c8a89f5aba77da9b2b1ed2ee954
SSDEEP

1536:tJuYKwU/vWsEXE0I/ipOpVQXilhf9rqde2:2YxUGffI/cFQt9ec2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37620b0283d69aabe8371e7d090da727

Files

37620b0283d69aabe8371e7d090da727
.exe windows:4 windows x86 arch:x86

d1518c4c2901dee7b6623b111c5028a7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawIcon
GetDesktopWindow
DrawIconEx
GetCapture
GetMenu

ole32

CoCreateInstanceEx
OleCreateStaticFromData
CoRegisterClassObject

kernel32

VirtualAllocEx
GetStdHandle
GetProcessHeap
LoadLibraryA
GetStartupInfoA
ExitProcess
GetProcAddress

gdi32

CreateFontIndirectA
GetBkMode
SetTextColor
GetTextColor
RestoreDC
GetBkColor
GetDCOrgEx

Exports

Exports

_O5stN
_0JIROM4QLD4
wJjrAPdqT1Q@24
uSHPhPm4c@16
YE_m_p6Uh0c5Xj

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ