058d85a647d2616872c7889fd5b8e333 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

058d85a647d2616872c7889fd5b8e333
Size

96KB
MD5

058d85a647d2616872c7889fd5b8e333
SHA1

9ac6323d572fa95e37ebc1af508239fcf70e0829
SHA256

3c3f5efd19965863f2ffbbd031340ee7e10689f32b11079b846cce379b213016
SHA512

015e316d3ad452db346dd0ee230904b22dd48a5dfa26a85d4753b038daf4c1526b7de9dc4a08b635435437fa16668ff30474e94a3c5d3f70308b336478480cb6
SSDEEP

3072:CJzYUl+zZNRquThScS2gaU8Zhcevee28s0A4e:CczPxTjSv7KiH1cA4e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
058d85a647d2616872c7889fd5b8e333

Files

058d85a647d2616872c7889fd5b8e333
.exe windows:5 windows x86 arch:x86

ddbbe9db7a72d90170792064b928d87d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowTextA
wsprintfA
CharToOemBuffA
AdjustWindowRectEx
SetCursor
CharUpperBuffW
LoadCursorW
ShowCaret
EndDialog
IsMenu
RegisterClassA
ArrangeIconicWindows
LoadAcceleratorsW
PostMessageW
IsWindowVisible

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_amsg_exit
_initterm
_ismbblead
vsprintf
_XcptFilter
_exit
_cexit
__setusermatherr
__getmainargs
mbstowcs

gdi32

PtInRegion
UnrealizeObject
SetTextAlign
GetObjectA
TranslateCharsetInfo
GetRgnBox

kernel32

GetModuleFileNameA
TerminateThread
GetVersionExW
GetModuleHandleA
WinExec
FindClose
FileTimeToSystemTime
FlushViewOfFile
LoadLibraryW

shlwapi

StrRChrA

Exports

Exports

?CreateDlgMessage@@YGHPAXPADK|U

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 71KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE