4669c62807558b787ff21b6d2a1be32f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4669c62807558b787ff21b6d2a1be32f
Size

18KB
MD5

4669c62807558b787ff21b6d2a1be32f
SHA1

90ea36b8b3e6c6dd645a12546834ca3bfdac32d3
SHA256

c64052089ddd479c2d3ee438fc6d7ab4c6ae05cebccdcec65f2e2f907d327dfa
SHA512

ad60e9c6caa23c16daf806564cffc7233b2d7c923333ae86aa8081ceceab8b683f1c2d5ebda58b873d520d3cd1cf49c797efd9011eb1725cf50b86a4457dc23e
SSDEEP

192:CUQdsNhuncCIaGuBBpvbCezKuEakVySayko+9CeHI8ZBwh:CUQSHu2aGAvuezKuNkVl1fbeHI8ZU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4669c62807558b787ff21b6d2a1be32f

Files

4669c62807558b787ff21b6d2a1be32f
.exe windows:4 windows x86 arch:x86

1d0a29522a4660beccc6bf4f9b6a3f97

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLogicalDrives
GetSystemDefaultLCID
GetCurrentThread
GetCurrentProcessId
CreateProcessInternalW
TlsGetValue
GetOEMCP
GetUserDefaultLCID
IsDBCSLeadByte
GetCommandLineA
FreeLibrary
GetModuleHandleW
VirtualAlloc
TlsSetValue
lstrcpyA
TlsFree
GetDriveTypeW
GetModuleFileNameA
lstrcatA
GetACP
GetCurrentThreadId

user32

IsWindowVisible
ReleaseDC
ShowWindow
GetWindowTextA
GetForegroundWindow
CloseWindow
GetWindowLongA
GetActiveWindow
GetDC
GetWindowTextLengthA
RegisterClassA
UpdateWindow
ValidateRect
GetSystemMetrics
GetFocus
GetClassInfoExA
IsIconic
GetWindow
GetWindowDC

imagehlp

ImageLoad
ImageNtHeader
BindImage
FindDebugInfoFile
CheckSumMappedFile
FindFileInPath

oleacc

GetStateTextA
DllRegisterServer
GetRoleTextA
LresultFromObject

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ