110eaf58d9317ae5acaae3b35760a74f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

110eaf58d9317ae5acaae3b35760a74f
Size

77KB
MD5

110eaf58d9317ae5acaae3b35760a74f
SHA1

8cf00ef44e6e6957c517ef637605a937d591468f
SHA256

2bc3db5a41754d5cd247a80dbea1dc1e336b6841824ae18fa3dd5d44adaa47e0
SHA512

5e02a7aac49ba70255d5163a833fcc68893ac2455dc6c994145ee3117e7b79db9ea49f037345d1563694cafe1cbe9eb8aadb3aebd6900d74a72f5281a723c131
SSDEEP

1536:V+r+JD8sb6vLngMCykmAQlcHO3P4FGcxHoKr:kCJD866jpChuQnxP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
110eaf58d9317ae5acaae3b35760a74f

Files

110eaf58d9317ae5acaae3b35760a74f
.exe windows:4 windows x86 arch:x86

9e566effe09622c7aafaf787ac56196e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BackupRead
DuplicateHandle
CancelIo
EnumTimeFormatsW
ExitProcess
CommConfigDialogW

urlmon

FaultInIEFeature
GetClassFileOrMime
CoInternetParseUrl
ReleaseBindInfo
URLOpenStreamA

comdlg32

GetSaveFileNameA
LoadAlterBitmap
ChooseColorA
dwLBSubclass
ReplaceTextA

comctl32

DrawStatusTextA
ImageList_DragEnter
DrawInsert

Sections

.text
Size: 48KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 72KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE