74da59a02bda4187b6dfd064e9c3c398 | Triage

Sharing

General

Target

74da59a02bda4187b6dfd064e9c3c398
Size

789KB
MD5

74da59a02bda4187b6dfd064e9c3c398
SHA1

42709e861c447df02dec4197804d7efaa72c7606
SHA256

40f155eb123c55ee7a2a988729d1f373c22c971044e3b0dcda65f719fe66aeab
SHA512

5ec1cc9ea33bd3e42ae0f090e7543f41462f2950113162fa8a4316ef88e42b96689e48164996d81ca52ac93f0bbb57b3f7fbbe3f9fc2f730510baf8713ed455c
SSDEEP

24576:dx9pGLmU3n26/Z/OMP5uAERALR7JQWcfI5lTCmEx:H9UG6R/P5rERydxcQTEx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74da59a02bda4187b6dfd064e9c3c398

Files

74da59a02bda4187b6dfd064e9c3c398
.exe windows:4 windows x86 arch:x86

ee219223eaf236d56ddaa4c58eb0eb0a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
FindResourceA
lstrlenW
CloseHandle
Sleep
SetLastError
TlsGetValue
TerminateThread
CreateMutexA
GetStdHandle
GetPriorityClass
HeapCreate
ReleaseMutex
GetCurrentThreadId
GlobalUnlock
SetEnvironmentVariableA
LoadLibraryExW
GetConsoleMode
GetModuleHandleA
LocalFree

user32

CheckRadioButton
IsWindow
GetIconInfo
DispatchMessageA
FillRect
GetDlgItem
GetCaretPos
DrawMenuBar
SetFocus
DrawEdge
CallWindowProcA
GetDC
CopyRect

apphelp

SdbFindNextTag
SdbCloseDatabase
SdbGetDatabaseID
ApphelpCheckIME
SdbFindFirstTag

clbcatq

ComPlusMigrate

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 765KB - Virtual size: 768KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ