090a5fabe25886ae22dd08abf3c0a755 | Triage

Sharing

General

Target

090a5fabe25886ae22dd08abf3c0a755
Size

162KB
MD5

090a5fabe25886ae22dd08abf3c0a755
SHA1

a0bd0d568084d73b6e54978901f8ee1453190873
SHA256

8ae45b1f18244a11e55b9544c4e67a77dc93d27482c6e463f8c78c90237fadba
SHA512

0a406b82386ef84820866c56813fe5d91e93d3a8ca4b70213ff05a9bc36a906578975706d57f8c9e43bec742614063bb13dd2e5a867c1c49bce9e01e84a6abb4
SSDEEP

3072:NVP8hJ7QZ9klgVhXJGhYUYFRtBy1beV64sUl2Ywz9EedH9t/Gk+IhNmE2rUifV:NVP837QUqVhXghNYLtwePsUTwRnd9tXi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
090a5fabe25886ae22dd08abf3c0a755

Files

090a5fabe25886ae22dd08abf3c0a755
.exe windows:4 windows x86 arch:x86

344dccf81e402bd522ed7a898c10e884

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetFocus
DrawFrameControl
ScrollWindow
InflateRect
EnumThreadWindows
InsertMenuItemA
ShowWindow
GetCapture
DefMDIChildProcA
SetMenu
SendMessageA
GetTopWindow
GetForegroundWindow
CallWindowProcA
GetCursor
GetClassNameA
LoadCursorA
OpenClipboard
DispatchMessageW
MessageBoxA
InvalidateRect
UnhookWindowsHookEx
EnumChildWindows
ScreenToClient
MapWindowPoints
GetIconInfo
SetRect
EndPaint
RedrawWindow

gdi32

CreateDIBitmap
GetPixel
RestoreDC
GetBitmapBits

kernel32

GetProcAddress
GetOEMCP
GetModuleHandleA
LoadLibraryA
lstrcpyA
GetVersionExA
SetThreadLocale
lstrcatA
lstrlenA
MoveFileExA
ExitProcess
Sleep
GetUserDefaultLCID
HeapAlloc
ExitThread
GetCurrentThread
VirtualAlloc

shell32

SHGetDesktopFolder

version

VerFindFileA

Sections

CODE
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 130KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE