10a6ecd086e8ae1c675f6cce0e366b85 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

10a6ecd086e8ae1c675f6cce0e366b85
Size

18KB
MD5

10a6ecd086e8ae1c675f6cce0e366b85
SHA1

1a59461ce16d8be7edb2fe0812241b4539bc147c
SHA256

a600765d3954a673be116eb9050fa328aa607dd6ce28bd54596c384eac2730ac
SHA512

56bb2302484433debd86b4989243342d9d9a55db4b4a58ca2bffb18f21bc311d1bf91800f543677ef0e4e9f8d463322207a1018fa2024845bea4f7dccb66864a
SSDEEP

384:MOkcMxC81wiOeIHRgfAnfg0hrBihFy0AhyKVQKOK7Ecb:XkcaC83GgwhlifytGKAcb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
10a6ecd086e8ae1c675f6cce0e366b85

Files

10a6ecd086e8ae1c675f6cce0e366b85
.dll windows:4 windows x86 arch:x86

664f5d59d81443f0a4cf98a4f58163d5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpynA
GlobalAlloc
CreateEventA
GetFileAttributesA
GetFileAttributesW
lstrcatA
MultiByteToWideChar
GetProcAddress
GlobalFree
ResetEvent
GetModuleHandleA
ReleaseMutex
CloseHandle
lstrcpyA
SetFilePointer
RtlUnwind
lstrcmpA
CreateFileA

user32

DestroyWindow
GetWindowRect
GetFocus
GetClientRect
SendMessageA
RegisterWindowMessageA
SetWindowLongA
MessageBoxA
GetWindowLongA
CreateWindowExA
GetDlgItem
ShowWindow
CreateWindowExW
IsWindowVisible
SetWindowTextA
EnableWindow
CallWindowProcA
SetDlgItemTextA
wsprintfA

advapi32

RegQueryValueExA
RegCloseKey

wininet

InternetConnectA

Exports

Exports

cool
feed
plem

Sections

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ