f73a382556ae9306c489f91ae570633a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f73a382556ae9306c489f91ae570633a
Size

695KB
MD5

f73a382556ae9306c489f91ae570633a
SHA1

4cc9b975f10e51f8ea4139d436c45002d4993a55
SHA256

72807e1a53e35e8d0dfbfdecc401abaf0d232bd6d4b939d2b89d15b329a4a6e3
SHA512

49d5154e308960ae7e39c383b0ab104d4449ba87ac2520a6e5bbe0b145f0ec59cf45ea0ddd787a35ef62e0d225606bfd5b0d5d3b00e2c738ddcd94d663ca2bd5
SSDEEP

12288:DnAgY2Js880JarCjiwYurIxbIQBN0N+h0QSHnvAd:Dnz/DjiwYQIxsgzhKHod

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f73a382556ae9306c489f91ae570633a

Files

f73a382556ae9306c489f91ae570633a
.exe windows:4 windows x86 arch:x86

a3c84e1a9bd3f7a6a27d163e90bee7d1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetVersion
GetCommandLineA
lstrlenA
CreateEventA
LocalFree
FreeLibrary
LocalAlloc
GetStartupInfoA
lstrcatA
GetLastError
GetModuleHandleA
GlobalFree
GlobalAlloc
Sleep
lstrcpyA
GetFileSize
CloseHandle
GetTickCount

gdi32

MoveToEx
GetPixel
ExtTextOutA
GetTextColor
BitBlt
SelectObject
PatBlt
SetBkMode
GetTextMetricsA
SetPixel
SetROP2
CreateCompatibleDC
GetBkColor
GetTextExtentPoint32A
CreateSolidBrush
CreateFontIndirectA

user32

DefWindowProcA
GetSysColor
DestroyWindow
DialogBoxParamA
CreateWindowExA
DispatchMessageA
GetMessageA
EndDialog
GetWindowRect
BeginPaint

msvcrt

_acmdln
__CxxFrameHandler
_adjust_fdiv
__setusermatherr
wcschr
_c_exit
__set_app_type
memmove

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 673KB - Virtual size: 676KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 724KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ