1204ee902af11c51620109d63455b5ba | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1204ee902af11c51620109d63455b5ba
Size

299KB
MD5

1204ee902af11c51620109d63455b5ba
SHA1

5827a00e1cd21c291d8a99f3248abb134751a3a0
SHA256

8e3d95a6cdee1f5584d3b22ca29c1e936c93f1abe5ba989ad00b74f9d800de4c
SHA512

7d99ce0512aa5f48191d2b088fe1a23acba2574e025339b4c8b208479b764ae682d5224cc691a183ef683327a227f944b1fc0d31e601928e2b0d774672ca68c2
SSDEEP

6144:FH+UAB7R42wpAs+XKzcqtTosOenSWia/23TVe5GEV8d3380GUxdvwQJC5Ja:FHRAB76vpAs0ZCTosObi5GEVuBx/v54

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1204ee902af11c51620109d63455b5ba

Files

1204ee902af11c51620109d63455b5ba
.exe windows:4 windows x86 arch:x86

d1260877e486c569be752784b44330fb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
SetEvent
Sleep
PulseEvent
LocalUnlock
lstrlenA
GetModuleHandleA
UnmapViewOfFile
GetConsoleTitleA
GetCommandLineW
SetLastError
LoadLibraryW
GetComputerNameA
GetSystemTime
GetCurrentDirectoryA
CreateThread
CloseHandle
LocalFree
HeapCreate
CreateFileA

user32

DrawMenuBar
FillRect
SetFocus
CreateWindowExA
CheckRadioButton
GetDC
GetScrollBarInfo
DrawEdge
DispatchMessageA
GetKeyState
IsWindow
CallWindowProcA
GetDlgItem

clbcatq

SetupOpen
SetSetupOpen
DowngradeAPL
CheckMemoryGates
UpdateFromAppChange

desk.cpl

InstallScreenSaver

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 628KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ