796bb92c142601cbf48ee21691335bf3 | Triage

Sharing

General

Target

796bb92c142601cbf48ee21691335bf3
Size

122KB
MD5

796bb92c142601cbf48ee21691335bf3
SHA1

67f72c01f15f346b49c6e46ec7b57c079508451f
SHA256

05e7c8e9ae4280c9704483d8c6db92258fe3d93d0d2061fbbbf28c2121d96f1e
SHA512

3c4efafff54479fff9b18d8dc4477c2415620d578f276c4860462838416ed03313989abf843a83b9a05a319e64a9b47d7d66d286b1a4d2ad2341035bceb6cbb8
SSDEEP

3072:28B8sV616kQ3uB5LJQ2U7EnO+FL5iuea/2xh0+/l8E3:28CsVrkn5LJhU7EnOe3eFxhN8Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
796bb92c142601cbf48ee21691335bf3

Files

796bb92c142601cbf48ee21691335bf3
.exe windows:4 windows x86 arch:x86

0bf54c570439505706fe42d334842271

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
ExitProcess
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetSystemInfo
GetThreadLocale
GetVersion
GlobalReAlloc
IsDebuggerPresent
LoadLibraryA
MulDiv
SetFileTime
VirtualAlloc
VirtualFree
lstrcatA

user32

GetCursorPos
SetCursor
SetFocus
SetWindowTextA

gdi32

GetCurrentPositionEx
GetDIBits
GetTextExtentPoint32A
MoveToEx
PatBlt
SetPixel
SetWindowExtEx

Sections

.text
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 779B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ