45bccadd3da99b104caad282d3d62249 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45bccadd3da99b104caad282d3d62249
Size

31KB
MD5

45bccadd3da99b104caad282d3d62249
SHA1

24311661c9fd3321c779331467ad0dd1d272e183
SHA256

48904e27786bb40488175bd89e6ab750d0df081f469ed1549a7d4dce3e9f2f27
SHA512

fe145d2a6a51cdedabc328bcfa5fde8ec83443315b20236a4da27a63ec607e5f48dce04d9cfa1e43cd6eec4c13322bf19e29a7a5f7adb0047f43d8830161da49
SSDEEP

384:G41g3XvnpXBwtyjjKmx+LCAeWON5+Yfo7Nb+MVfdpLrQ1VV4f8Rd6zDYx:GkApXettW7WOL+4od+Mt4VV4f83IYx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45bccadd3da99b104caad282d3d62249

Files

45bccadd3da99b104caad282d3d62249
.exe windows:4 windows x86 arch:x86

f61fc4f7878e44936063da75f252f1ac

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryExA

ntdll

RtlSetThreadPoolStartFunc

user32

SetClassLongA
PaintDesktop

ole32

ComPs_NdrDllRegisterProxy

gdi32

EnableEUDC
GetFontLanguageInfo
FrameRgn
FillPath
ExtSelectClipRgn
Ellipse
CreateDIBPatternBrushPt
CombineRgn
MaskBlt
GdiAlphaBlend
SetTextColor
SetSystemPaletteUse
SetRectRgn
SetFontEnumeration
Pie
GetROP2

netapi32

NetWkstaTransportDel

shell32

SHPropStgCreate

pdh

PdhGetFormattedCounterValue

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 950B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ