0ef88f70f36b9f505002cf15dd1c3a6b | Triage

Sharing

General

Target

0ef88f70f36b9f505002cf15dd1c3a6b
Size

109KB
MD5

0ef88f70f36b9f505002cf15dd1c3a6b
SHA1

05e38491c95ea7ce013fb9ee0116abb623974ab5
SHA256

e61e51b648aa4c18efed000ac0eee82e5ef3241c917b49f9a7e54518d96d8fcc
SHA512

b8e4c6636d1d31d49c8111c012caf7ee3701fa2e5ac17ddbf1f165921ee25cda8e4cf0282eb6156911bf2eb1cfeb38da98d0a75e21db189347a36248f5d7dcf7
SSDEEP

1536:LhII+BdfVCAbahvRXimFvmbjf2ekTciRvIrMacV+kh4/G3gWm1FA8i6+c9tf9hlQ:idfoBFvmbieZiRQrcVt93gW09hlV2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ef88f70f36b9f505002cf15dd1c3a6b

Files

0ef88f70f36b9f505002cf15dd1c3a6b
.exe windows:4 windows x86 arch:x86

a8651c68100c20ab8755cec78b13b482

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
RemoveDirectoryA
DeleteFileA
VirtualAlloc
GetSystemTime
GetModuleHandleA
GlobalFindAtomA
GetCommandLineA
QueryPerformanceCounter
lstrcmpA
VirtualFree
GetWindowsDirectoryA
lstrlenA
lstrcmpiW
CopyFileA
lstrcmpiA
RemoveDirectoryW
FindClose

gdi32

SelectPalette
SetTextAlign
GetPixel
SetTextColor
GetObjectA
GetStockObject
RestoreDC
GetDeviceCaps
SaveDC
CreateCompatibleDC
SelectObject
SetStretchBltMode
CreatePalette
DeleteDC
DeleteObject
SetMapMode
CreateFontIndirectA
GetTextMetricsA
GetClipBox
CreateSolidBrush
LineTo

user32

GetDC
GetParent
CharNextA
GetSystemMetrics
GetDesktopWindow
TranslateMessage

glu32

gluNurbsCallback

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ