669464d92a1838c2af221e90a51f81a8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

669464d92a1838c2af221e90a51f81a8
Size

813KB
MD5

669464d92a1838c2af221e90a51f81a8
SHA1

6bd40274f83e5218ca97ac0801bebbf83de9d35d
SHA256

5c7bde75c519f2a641d992a6246c5e2d632f60763d10949f6d3119b281ed6a39
SHA512

efa66a4e007510be3f3ea3d9e71b7d2a73462500a17b866f4bce3ec19647b8e1414c636975ef1694de7cb33875475bc251be21fae2f3172ee2dbc2fd1883a5c3
SSDEEP

24576:PglWBsEYgKe5Rcn7ENILvQWQRY+yvWZ6a2:PgWTYgRcn7NvQWQRY+12

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
669464d92a1838c2af221e90a51f81a8

Files

669464d92a1838c2af221e90a51f81a8
.exe windows:4 windows x86 arch:x86

9e9eb9af4e3408c02fc7d27455b77145

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
IsBadReadPtr
GetConsoleCP
CloseHandle
IsDebuggerPresent
WaitForSingleObject
CreateFileMappingA
CreateFileA
LocalFree
FreeEnvironmentStringsA
GetLastError
LocalLock
HeapCreate
TlsGetValue
LocalUnlock
GetACP
CreateEventA
LoadLibraryExA
FindClose
GetStdHandle

user32

GetDC
ScrollWindow
EmptyClipboard
GetMessageA
EndMenu
PostMessageA
CreateDialogParamA
DispatchMessageA
GetDlgItem
SetFocus
DefWindowProcA
GetIconInfo
IsWindow
DrawIconEx

msasn1

ASN1BEREncLength
ASN1BERDecEoid
ASN1BEREncFlush
ASN1BERDecBool
ASN1BERDecCheck

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ