4f9b1c737715743cfd0619de0f36ed6b | Triage

Sharing

General

Target

4f9b1c737715743cfd0619de0f36ed6b
Size

185KB
MD5

4f9b1c737715743cfd0619de0f36ed6b
SHA1

c01ffc422b03c003b5718f00de0e6f9ad8e37063
SHA256

cffcbe902fac0f07eacf59aebc887593c6abe9f4d91dbd39823fc1794cb6cd27
SHA512

9887a4caf570e8b2c5352e207209157373f4537c6c143b88abe283d8b5f880331ff007a403f4ab48e966b2a1cb9ae77d11aaa8654abee1b412c2454a1ecfafb4
SSDEEP

3072:1CwUFQxlnNXGgPqIzYOxmtNMZNeyt5BvMhfReCtkUJbEhM13bq3Rm:1CwU6xRqIzYM+NMZj7ZKpeXU1ECf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4f9b1c737715743cfd0619de0f36ed6b

Files

4f9b1c737715743cfd0619de0f36ed6b
.exe windows:4 windows x86 arch:x86

7047224d0743d3f5835d3be43b001ccd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

comctl32

ImageList_DragLeave
ImageList_DragMove
ImageList_DragEnter

gdi32

DeleteDC
StretchBlt
SetStretchBltMode
CreatePen
CreateDIBSection
CreateCompatibleDC
GetObjectType
BitBlt
LineTo
SelectObject
CreateDCW
CreateBitmap

user32

TrackPopupMenuEx
RedrawWindow
CreatePopupMenu
ClipCursor
FindWindowA
DestroyMenu
GetDesktopWindow

ole32

CoInitialize
StringFromGUID2
CoFreeUnusedLibraries
CoUninitialize
CoCreateInstance

kernel32

SetHandleInformation
LocalAlloc
TransmitCommChar
GetVersionExA
EnumResourceNamesW
ExitProcess
LocalFree
LoadLibraryW
ExitProcess
GetModuleFileNameA

gdiplus

GdipCreateBitmapFromFile
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage

msimg32

AlphaBlend
TransparentBlt

Sections

.text
Size: 134KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 512B - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ