4f537dcacd453a7ba684ac819756eead | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4f537dcacd453a7ba684ac819756eead
Size

167KB
MD5

4f537dcacd453a7ba684ac819756eead
SHA1

69240252c6d5a431ab06bfa474864b9f5199bf70
SHA256

b9de742c1108b2626fc8170c5334a9d4144ca0caf4343d9a810e8b5a8d4dac76
SHA512

e8c35b78a06c5f8814e9917027cb033f1e27dc3f6821617ded9eea08e1acc93d98a8d50c89f53cab350a36d3418298af8336d5648bde9c95e1263f24ff965185
SSDEEP

3072:JssG2ciAr1+A85ok2c+px8rzfHTzBniy/u0YHo6RAXgIOyFHDrFIcHbzVuS9H/q:JsjYA5+A0Gw8y20YHqXBFHFIUbgS9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4f537dcacd453a7ba684ac819756eead

Files

4f537dcacd453a7ba684ac819756eead
.exe windows:5 windows x86 arch:x86

81c31da05b5ebab36c41091841650912

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetThreadContext
GlobalMemoryStatus
GetProfileIntA
ResumeThread
GetProfileStringW
ClearCommBreak
GetSystemWindowsDirectoryW
GetShortPathNameW
ConnectNamedPipe
SetupComm

shlwapi

PathUnquoteSpacesA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

user32

MessageBoxA

gdi32

AddFontResourceW
DeleteObject
FillRgn
CreateRectRgn

Exports

Exports

?ToTestFunction@@YGKXZ

Sections

.text
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug01
Size: - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ