5c83ffa285d8be18094cf76a7fd4eb79 | Triage

Sharing

General

Target

5c83ffa285d8be18094cf76a7fd4eb79
Size

64KB
MD5

5c83ffa285d8be18094cf76a7fd4eb79
SHA1

acf766799a39d3003d11521342f76e1763612b1e
SHA256

e911878f40d724d5370cb9522296f172ad6f34a39987308246e07a47d9806396
SHA512

5343d173298110f9d069214ef20c344333bbca9ec3171835d73870df6c92b9859b5312591cdb1984e4a32e388a4da6e6e32199f1e5c621d4858e04168804db5f
SSDEEP

1536:SK3A9Ve4v4/RSGf+mf9iNwUJMMVIxWxfn3i6HVD:SK3ATxA4GW1vVkWxfv1D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c83ffa285d8be18094cf76a7fd4eb79

Files

5c83ffa285d8be18094cf76a7fd4eb79
.exe windows:4 windows x86 arch:x86

427b10b23ca769025ced7be02e017766

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetACP
GetCommandLineA
PeekConsoleInputA
GetTimeFormatA
VirtualProtect
GlobalMemoryStatus
LoadLibraryA
GetSystemTime
GetCurrentProcessId
FreeConsole
IsDebuggerPresent
InterlockedExchange
GetUserDefaultLCID
ResumeThread
HeapDestroy
GlobalSize
GetOEMCP
HeapCreate
WaitForSingleObject
GetTapeStatus

user32

FillRect
GetCursorPos
ReleaseDC
FrameRect
DragDetect
EndPaint
GetFocus
GetDC
BeginPaint
wsprintfA
SetForegroundWindow
GetTitleBarInfo
CreateIcon
GetClassNameA
AnyPopup
GetParent
ShowWindow
GetWindow
DrawTextA

ntshrui

IsPathSharedA
IsFolderPrivateForUser
SetFolderPermissionsForSharing
GetLocalPathFromNetResourceA
GetNetResourceFromLocalPathA

msutb

GetPopupTipbar

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ