65a9fe301ece096158fd5918049a47ca | Triage

Sharing

Copy URL Twitter E-mail

General

Target

65a9fe301ece096158fd5918049a47ca
Size

40KB
MD5

65a9fe301ece096158fd5918049a47ca
SHA1

a4d80022292378fa9e2a791cb8c28681f606617b
SHA256

c6e458cd3da2e436da7d400e0f2e4a71bdbab231732b9ef980b922ff743e8a1a
SHA512

d8caebdea75aa93dbb2a39822dfa0a5c47768eecaa51d2986f1f1a13e309d0802f0ef08b848062e3d6e9ee282634a9d9225adce1eede1a97bae6a8569485a21d
SSDEEP

768:TTNJgxi11DIhdAy2EB++UtfAFA/iPcycqObnhpy7nFCDBrr6:PNJUi1ly2EUtfAFei0ycjjhp9a

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
65a9fe301ece096158fd5918049a47ca

Files

65a9fe301ece096158fd5918049a47ca
.exe windows:4 windows x86 arch:x86

458f0ffbc67c9e3bb55fe6573f5c2c5a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
CreateMutexA
OpenMutexW
GetModuleFileNameA
lstrlenA
GetLogicalDrives
CloseHandle
FileTimeToDosDateTime
ExitThread
AddAtomA
HeapCreate
GetVersion

user32

InvalidateRect
GetDlgItemInt
GetQueueStatus
GetDlgItem
InvalidateRgn
SetScrollPos
LoadCursorW
IsIconic
RegisterClassExW
GetKeyboardLayout
SendDlgItemMessageW
IsMenu
IsChild
MessageBoxIndirectW
GetClassNameW
RegisterWindowMessageW

gdi32

CreateEllipticRgn
CreateBitmapIndirect
CreateFontIndirectW
CreateCompatibleBitmap

advapi32

RegSaveKeyA
RegQueryValueA

comdlg32

ReplaceTextW
FindTextA
PrintDlgW

shell32

SHGetSpecialFolderLocation

ole32

CoDeactivateObject

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ