f67aad4136339e39a29c3d91d474a2d9 | Triage

Sharing

General

Target

f67aad4136339e39a29c3d91d474a2d9
Size

113KB
MD5

f67aad4136339e39a29c3d91d474a2d9
SHA1

3e1ab1ddb54282d20d44ab5302daea892a0cf4fd
SHA256

e2a454464d9d1b650da2f38335a08d0739c01c7de92bd371d2336d1185f7c154
SHA512

3c74f1018363dbdc1d95539eade3c3be4c900dca00112a2f784ceea11df38f96a6807fddf33148a52660a39a1681d2ba9e257c5e59d1a7693ba095d3fbc95a4e
SSDEEP

1536:DSPWcOZRErt8XaAH9DLgAKO0KmKyRiZCoB6nJmLUkTyO2oNokDqS7UzcHEMtwriF:DSPjrtqn1P6J+vX1r8r3TBM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f67aad4136339e39a29c3d91d474a2d9

Files

f67aad4136339e39a29c3d91d474a2d9
.exe windows:4 windows x86 arch:x86

ff67575ebf76a1b3b36314ed59bf3056

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharNextA
TranslateMessage
GetParent
GetDC
GetSystemMetrics
GetDesktopWindow

kernel32

lstrlenW
GetSystemTime
QueryPerformanceCounter
DeleteFileA
lstrcmpiW
CopyFileA
lstrcmpA
RemoveDirectoryW
FindClose
lstrlenA
GetModuleHandleA
RemoveDirectoryA
lstrcmpiA
GlobalFindAtomA
VirtualAlloc
VirtualFree
GetCommandLineA

gdi32

GetPixel
SetTextColor
GetDeviceCaps
CreateCompatibleDC
RestoreDC
DeleteObject
SelectObject
GetStockObject
SaveDC
SetStretchBltMode
RectVisible
CreatePalette
SelectPalette
SetMapMode
SetTextAlign
GetClipBox
GetObjectA
LineTo
GetTextMetricsA
DeleteDC
CreateFontIndirectA

glu32

gluNurbsCallback

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ