fb3d344be065453c0cbe0d477b1c8fa8 | Triage

Sharing

General

Target

fb3d344be065453c0cbe0d477b1c8fa8
Size

195KB
MD5

fb3d344be065453c0cbe0d477b1c8fa8
SHA1

39f5f09feba7b5badec1063ae459fe0e0522b1e0
SHA256

44f105d64c55a8773bb2a9ede81646f8b79503ec15eea7560990fa132d79ef76
SHA512

011406d4ef23135300ec3f718a5b43300fdcc6bad0ec19c99623cd8a0bcee562efd0efcbf4881237652df31f88d9191bddd068ff2dbb4088d290e3464413926c
SSDEEP

3072:qJg93A/BYtsYUG214enxLQVYFKEtgU//r23uV13MBhIog+rMbZBOGSqszwQu5CiQ:b9Qp0lz2yceq//pM/I0rXN1wQu5Cp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fb3d344be065453c0cbe0d477b1c8fa8

Files

fb3d344be065453c0cbe0d477b1c8fa8
.exe windows:5 windows x86 arch:x86

9d56afe664bdb8be244e2c0d628f2740

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

CreatePropertySheetPageW

shlwapi

PathIsContentTypeW

user32

SendMessageTimeoutA
MapDialogRect
SendInput
SetWindowRgn
MapVirtualKeyA
CallWindowProcA
GetMenuItemInfoW
OffsetRect
SwitchToThisWindow
DrawTextExW
GetShellWindow
SetMenuItemInfoW
SetFocus
CharLowerA
wsprintfA
RegisterHotKey
SetWindowLongW

gdi32

GetSystemPaletteEntries
GetTextExtentPointW
FillRgn
SetAbortProc
RealizePalette
GetTextExtentPoint32A
RectInRegion
SaveDC

kernel32

GlobalAddAtomW
lstrcpyA
GetCommProperties
UnhandledExceptionFilter
GetTempPathA
lstrcpyW
SetLocalTime
CreateNamedPipeW

Exports

Exports

HideFolderA@8
AddCommandLineExA@4
CrtPointerEx@4
GetCommandLineExA@8
CancelAnchorNew@16

Sections

.text
Size: 163KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 676B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ