121b92ac0d2f9692993a288bad1fd147 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

121b92ac0d2f9692993a288bad1fd147
Size

80KB
MD5

121b92ac0d2f9692993a288bad1fd147
SHA1

1b7d316991c8a3335f4febaa1df433292511167b
SHA256

70f9ea1c307204de2dba56d6b5a97466de673149b888db04f9c999f838c2de44
SHA512

d64618a3be347e5a80b2fe91ab26c1dfe45beea0e2c2abc35563eab42140d865d960af990026d00bdd9a7d1eb9c84db74ac753cca5e064b04430914664889521
SSDEEP

1536:C8Zcu6nJhyRxvpt6BQP1TN7GsxqLC6a+HNSw6PIiWK9v5/Ww2Ys1sopjXK:C80JhYxz6BQdlDxm3UyGB/Ww2TJ6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
121b92ac0d2f9692993a288bad1fd147

Files

121b92ac0d2f9692993a288bad1fd147
.exe windows:1 windows x86 arch:x86

10bcda1b00c44baca332187784b11596

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

HideCaret
GetWindow
GetWindowLongW
IsChild
IsMenu
GetMonitorInfoW
GetSysColorBrush

shell32

SheFullPathW
FreeIconList
SheGetDirW
StrChrW
StrNCmpW
WOWShellExecute
SHEmptyRecycleBinW

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE