01090aafe5aecb6166d03e9ee5b30c3c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

01090aafe5aecb6166d03e9ee5b30c3c
Size

48KB
MD5

01090aafe5aecb6166d03e9ee5b30c3c
SHA1

0b353db88f6b62ec3bf73979add201efa61d2acd
SHA256

292a25ecae72412726f69c75108ef2fd50e49564ca85a092d0c20151a9beb2d7
SHA512

fe60be0a2c1dd9480ffcf01e36d986d0dd3c149db6d14fa91c1633cc50eac435f9c80a4d07bbc26c23cd88e9ab1bb65dc8d50bb3447c5de0b0d1a86e4db22136
SSDEEP

768:e8niIFtqO0Ytawo8pT4A5ilwSv4Hb+Xey+8+1/0piYf8MXaF8:GIFtf0/eT9QlNVXL91a8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
01090aafe5aecb6166d03e9ee5b30c3c

Files

01090aafe5aecb6166d03e9ee5b30c3c
.exe windows:5 windows x86 arch:x86

df7c1e64948e115d307e86813aa50e5b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA

shlwapi

PathCombineW
PathFileExistsW
PathFindFileNameW
SHDeleteKeyA
StrCmpNIA
StrStrW
wnsprintfA
wnsprintfW
wvnsprintfA

user32

CloseDesktop
GetClipboardData
GetDlgItem
GetDlgItemTextA
GetForegroundWindow
GetKeyState
GetWindowLongA
LoadCursorA
PeekMessageA
SetProcessWindowStation

Sections

.ubslwh
Size: 38KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfmn
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tkbqb
Size: 5KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bHviT65Y
Size: 96B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ