728e572a18bfef10d8a2ceda02a4469d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

728e572a18bfef10d8a2ceda02a4469d
Size

177KB
MD5

728e572a18bfef10d8a2ceda02a4469d
SHA1

64462c634598a493aeb7768bb2daedb080afbb8f
SHA256

47e9bd33bf755b6a7da08ea204b1a5aa70f658f876d897be98ea57a2b71ae1cf
SHA512

1ee54a8a2ad1f36543664916c86a57e64e337f01c145ecf719d97835de456d159d08a8a3f029ba494d35aa8ff6b18133697b4a5624fbdeb3b43c82daba3d5a3d
SSDEEP

3072:QkmORPMCjleEaFwo5/CpP/5F3j1ThdYNFvllgdn9n+ZC4ctBFG5ny74Xegggv23D:QkmGkJ9WoknT1ThuNFvTgpR+k4aodOgZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
728e572a18bfef10d8a2ceda02a4469d

Files

728e572a18bfef10d8a2ceda02a4469d
.exe windows:5 windows x86 arch:x86

f7015f33371f4825d710818cc0f205e3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetForegroundWindow
IsCharAlphaNumericW

kernel32

lstrcmpiW

Exports

Exports

?FinanceAssist@@YGGPAUHKEY__@@PAUHPALETTE__@@@Z

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.t2
Size: 512B - Virtual size: 146B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.t1
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.t4
Size: 1024B - Virtual size: 595B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ