fd14b6af46d9ea077909d95b213019b5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fd14b6af46d9ea077909d95b213019b5
Size

335KB
MD5

fd14b6af46d9ea077909d95b213019b5
SHA1

60fb779bace45bcd94739423c4fb51de67b89283
SHA256

34f54831f0f03785212ffd7ee4e7472725c2c3f2356cba48cf0756e5f54c6b2d
SHA512

8c5db624e5c10e29c90f96d882a8844cdd08023ba1f8857d4c22eca219819023a64011429a9c39e116549ef2d4945d4fa4da32927d140ccdfd8f641685982577
SSDEEP

6144:P0aSQ/ssuD0joUMQzcnRfaKMDwzCTzKSk7bIXz0Ewho/rIihdDw:PljtjonxwZMzcdXz0PoMihS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fd14b6af46d9ea077909d95b213019b5

Files

fd14b6af46d9ea077909d95b213019b5
.exe windows:4 windows x86 arch:x86

a9b27aa7f24978930e6736261a041a04

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryExW
OpenMutexA
LocalFree
OpenMutexA
lstrlenA
GetACP
FindClose
FreeConsole
IsBadReadPtr
GlobalLock
VirtualProtectEx
GlobalUnlock
GetStdHandle
LocalFlags
GetLastError
CloseHandle
CreateEventA
GetModuleHandleA
GetConsoleTitleW
GetSystemTime

user32

GetDlgItemTextA
GetParent
IsMenu
DialogBoxParamA
LoadCursorA
ClipCursor
IsIconic
EndDialog
GetSubMenu
GetKeyState
GetMessageA
CreateWindowExA
GetMessageA
MessageBoxA

clbcatq

SetupSave
GetComputerObject
GetCatalogObject
CheckMemoryGates
ComPlusMigrate

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ