f853ac1c7ee1c183973c3bc2864508fc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f853ac1c7ee1c183973c3bc2864508fc
Size

132KB
MD5

f853ac1c7ee1c183973c3bc2864508fc
SHA1

f70d9b53aee2f699283e48b61b2cd44ac980fe5f
SHA256

57b57b4781bf17bb4f348a80a6061b340d6e546d4c97ad75c125d27e9ea7bd4a
SHA512

7a36211561e2ac521ad116bf227d17c44aaf0823ce8bd2d4b161c9d404cb39d7d4f77ab731857877ec30540ae6911e40d2dc3bdf01b4ee99dee12b6f01eb0a14
SSDEEP

3072:RQtMj8uBfJ2MYSB8Rbt/nHLBm3bsFj4r5jCBFTVRj9Z5vl7B+Igk:RYuBfnEb116b44r4BFjxZ5NBzr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f853ac1c7ee1c183973c3bc2864508fc

Files

f853ac1c7ee1c183973c3bc2864508fc
.exe windows:5 windows x86 arch:x86

245330d31202efec727f5ee42ae602c0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UpdateWindow
GetDialogBaseUnits
LoadMenuW
GetMonitorInfoW
wsprintfW
DialogBoxIndirectParamA
PostQuitMessage
BeginPaint
GetSystemMetrics
SetCursor
ScrollWindow
GetDC
GetMenuItemRect
WaitForInputIdle
MoveWindow
GetLastActivePopup

shlwapi

UrlGetLocationW
ChrCmpIW

msvcrt

_controlfp
__set_app_type
fflush
malloc
getenv
__p__fmode
__p__commode
_amsg_exit
_initterm
_ismbblead
memset
_XcptFilter
_exit
_cexit
__setusermatherr
__getmainargs

kernel32

MoveFileW
HeapUnlock
CreateFileW
HeapWalk
LoadLibraryA
MulDiv
lstrcmpiW
GetShortPathNameA
lstrlenA
GetModuleFileNameA
LoadLibraryExA

gdi32

SetBkMode
ScaleWindowExtEx
CreateFontW
GetPaletteEntries
RectInRegion
CreateDIBSection

Exports

Exports

?CreateDlgMessage@@YGHPAXPADK|U

Sections

.text
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idir
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 102KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE