1da439f50da8f53fb32c9b5c747fa70b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1da439f50da8f53fb32c9b5c747fa70b
Size

30KB
MD5

1da439f50da8f53fb32c9b5c747fa70b
SHA1

7f7075bf47fe558015d4a5f5b04a7ea33b219ece
SHA256

278b35f424aed2593382a9f979900b8fdec09ba6ab3a2936a11cd581a7a3b5c2
SHA512

fe9569fcaa83666430b389c33cf01f342f998c65c2729625287f085fc787b699816c1b54f97f1ae93fb38f67b63681db6062f4aa59d1a69618014b94d89405a9
SSDEEP

384:wKLAFQL3yuR4I+++zt054wdEqp3un1B9IDKYAA1rSAbf:w8riu9AJ06+EqM1B9eKYACrSmf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1da439f50da8f53fb32c9b5c747fa70b

Files

1da439f50da8f53fb32c9b5c747fa70b
.exe windows:4 windows x86 arch:x86

7af186d229e606af12c32f05496a39ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
WriteFile
lstrlenA
WinExec
GetWindowsDirectoryA
GetModuleHandleA
ExitProcess
CreateThread
CreateFileA
lstrcmpA
CloseHandle

comctl32

InitCommonControls

user32

GetDlgItemTextA
GetSysColor
GetWindowRect
IsDlgButtonChecked
LoadCursorA
GetCursorPos
GetDlgItemInt
SendMessageA
SetCursor
SetDlgItemInt
SetDlgItemTextA
SetWindowTextA
ShowWindow
PtInRect
GetDlgItem
wsprintfA
CheckDlgButton
DialogBoxParamA
EnableWindow
EndDialog
LoadIconA

shell32

ShellExecuteA

wsock32

inet_addr
recv
send
socket
gethostbyname
connect
closesocket
WSAStartup
WSACleanup
htons

gdi32

SetBkMode
SetTextColor
SelectObject
CreateSolidBrush
CreateFontA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ