5c3788cb3233d7b22906ed21e8e67bf9 | Triage

Sharing

General

Target

5c3788cb3233d7b22906ed21e8e67bf9
Size

37KB
MD5

5c3788cb3233d7b22906ed21e8e67bf9
SHA1

c7ef87a2f7a497fa77acdc781b25625de442e05b
SHA256

49f1b74edd97df6b04cdf711b3217e605d766a6c2576e721c843f67719ff0123
SHA512

aa20d810ef42f18a9b3fca354ad11cf11cfd2432f17c3e6b417a499b8132862983b41666c32dd995621973706e5c983e363ff7d3108d9fbb41256f7be3d41e8b
SSDEEP

768:v9tf1xInxWe+AaN6zA4hZBsEcX6FPwls9d2YVAob6KPX5+0iEtaUIz:Vtr6xWeT/zA4h7sJqwa9d2YSAtwz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c3788cb3233d7b22906ed21e8e67bf9

Files

5c3788cb3233d7b22906ed21e8e67bf9
.exe windows:5 windows x86 arch:x86

c08342a63666e276ccd76a2710dd42d2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
strpbrk
__set_app_type
__p__fmode
__p__commode
_amsg_exit
strlen
_initterm
_ismbblead
_XcptFilter
iswalpha
_exit
swscanf
_cexit
__setusermatherr
__getmainargs

kernel32

GetComputerNameW
lstrlenA
GetModuleFileNameA
LoadLibraryA
SetPriorityClass
GetModuleHandleW
ExitThread
LoadLibraryExA
TerminateThread
GetFileType

gdi32

GetTextColor
SetTextAlign
CreateHatchBrush
GetNearestColor
GetCharWidth32W

shlwapi

ChrCmpIW

user32

GetDlgItemInt
ChildWindowFromPoint
GetDlgItemTextW
GetWindowDC
SetWindowRgn
LoadCursorW
ReplyMessage
IsCharUpperW

Exports

Exports

?CreateDlgMessage@@YGHPAXPADK|U

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.xyz
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE