098600e2d3fe09031271ea748fbfe2af | Triage

Sharing

General

Target

098600e2d3fe09031271ea748fbfe2af
Size

208KB
MD5

098600e2d3fe09031271ea748fbfe2af
SHA1

5f9c88d008a383f63fe18b144c3535791d8d4ebb
SHA256

8502f71d810451351e6cc6881f86f0a755cb00decf829a1b6393554959fe7387
SHA512

f080a645614c6e7e0afefad74280ce22ce6df4ca5f1f1dd71514016de6c70b55933ed3886737cc1204ad0bcb3758be13b7a70feeb7895e1ff286489f8246fbb4
SSDEEP

6144:QVDQN7VbIvfnPvGYuuKqlIGIrd+A92lV3Y6P+ZUMuUMVM:QVDQHc9PGr9I9Y6PgLj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
098600e2d3fe09031271ea748fbfe2af

Files

098600e2d3fe09031271ea748fbfe2af
.exe windows:4 windows x86 arch:x86

b25842d966c769b752476bab79683fcb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
lstrlenA
CompareFileTime
SuspendThread
HeapReAlloc
AddAtomA
GetProfileIntA
GetModuleHandleA
VirtualProtect
InterlockedExchange
GetSystemDefaultLangID
LoadLibraryExA
GetTickCount
CloseHandle
HeapCreate
GlobalUnlock
GetCommandLineA
GetConsoleCP
WaitForMultipleObjects
GetStdHandle
GetVersion

user32

GetKeyState
DestroyMenu
EnableScrollBar
SetWindowPos
SetPropA
GetDlgItem
IsDialogMessage
TranslateMessage
GetKeyboardLayout
CreateCursor
CopyRect
InsertMenuA
DialogBoxParamA
MessageBoxA
ModifyMenuA
FindWindowA
PaintDesktop
DrawCaption
GetWindowTextA
EqualRect
GetMenuStringA
SubtractRect
CreateCaret
DispatchMessageA
PostMessageA

netapi32

DsRoleCancel
DsRoleFreeMemory
DsGetDcOpenA
DsGetDcNextA
DsGetDcNameA

dnsapi

DnsStatusString

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 816KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ