0f92206ed3520948125e1fcfd0c9eeb7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0f92206ed3520948125e1fcfd0c9eeb7
Size

112KB
MD5

0f92206ed3520948125e1fcfd0c9eeb7
SHA1

4a5090ff848365b216c11631bc230977e93e8702
SHA256

e4ba6c704ea143fa24ea599d2940c369a91cc651fa8d3b87c9a6ee63b873a245
SHA512

9f8d960f78211dc90de728582ce2e17abf515374e33b6470fad135615322c2a4bf3dd63d350c27d9aa9f06264b214927faf978ef100a495b51863055c8257f7f
SSDEEP

1536:EQtT7cX7Msy3e5BEj1s7VUDYYECCtZh0IWWvTerzarKHZ4O6xIQLQw/1DMjg+:EC7cgD3eQB8ftUavTer7ZQQw/1Dm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f92206ed3520948125e1fcfd0c9eeb7

Files

0f92206ed3520948125e1fcfd0c9eeb7
.exe windows:4 windows x86 arch:x86

998af2f2cc0693b592def7366ccc1d5a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
GetCommandLineA
GetModuleHandleA
RemoveDirectoryA
lstrcmpiA
QueryPerformanceCounter
VirtualAlloc
GlobalFindAtomA
CopyFileA
DeleteFileA
lstrlenW
GetWindowsDirectoryA
VirtualFree
lstrcmpiW
lstrcmpA
GetSystemTime
RemoveDirectoryW
FindClose

user32

TranslateMessage
GetDesktopWindow
GetSystemMetrics
CharNextA
GetDC
GetParent

gdi32

GetDeviceCaps
GetTextMetricsA
SelectPalette
CreateFontIndirectA
CreateSolidBrush
CreateCompatibleDC
RestoreDC
LineTo
RectVisible
SaveDC
SetMapMode
SetStretchBltMode
DeleteObject
GetClipBox
DeleteDC
SetTextColor
SelectObject
GetObjectA
SetTextAlign
CreatePalette

glu32

gluNurbsCallback

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ