0dac00f7e288f5b2e2c96628facefa3e | Triage

Sharing

General

Target

0dac00f7e288f5b2e2c96628facefa3e
Size

43KB
MD5

0dac00f7e288f5b2e2c96628facefa3e
SHA1

6bc72ae2395599e830e716e574ad771477af7e1b
SHA256

581565a4027005648703d3c96162c97c3c90f6386a28f14fb07bc7c0cc61e7c0
SHA512

924399b4bcc522e7ad5260ab8bab32b6493cb0a9fe69f6fac6b77817bba9bfd2212cc9e4caf45cfce7364eab09998cebdd526ea2e513d3fff1fbce31c5d2920e
SSDEEP

768:cUSVDFdGl3RsiUtBmIqoKusXCgNMTOjmAltD7naGL8:0jYRkqolsSgNMSjm0/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0dac00f7e288f5b2e2c96628facefa3e

Files

0dac00f7e288f5b2e2c96628facefa3e
.exe windows:5 windows x86 arch:x86

b9271c11da9358aea09a84e069e1de76

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultUILanguage
MultiByteToWideChar
lstrcpynW
OpenProcess
GetSystemTimeAsFileTime
GetTimeZoneInformation
lstrcatW
UnmapViewOfFile
GlobalLock
ExpandEnvironmentStringsW
GetCurrentThread
FlushFileBuffers
SetFileTime
HeapAlloc
SetFileAttributesW
MoveFileExW
DisconnectNamedPipe
CloseHandle
GetSystemTime
GetTempPathW
SetEvent
SetEndOfFile
lstrcmpiA
HeapFree
CreateProcessW
GetDriveTypeW
lstrlenA
SetThreadPriority
CopyFileW
CreateEventW
GetModuleFileNameA
CreateThread

user32

EndDialog
GetKeyState
GetMessageA
GetClassNameW
CloseWindowStation
FindWindowExW
CharLowerBuffA

Sections

.clspij
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tih
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pwban
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ