116c2bb302396ba1ad6ebfba627e091f | Triage

Sharing

General

Target

116c2bb302396ba1ad6ebfba627e091f
Size

403KB
MD5

116c2bb302396ba1ad6ebfba627e091f
SHA1

f458b9d120e5a7210b189430b10dba2c4f1023f3
SHA256

eca6be49a23cb2f3452b54372b641564253975ee597a3493f594a5ade9e4e11d
SHA512

51cec5e7458577d3408c38794610450bd005b5af39830fdebc464d64d71540cd884a9e2743569c37d1b62eee74275febfdc5b5068c03851f9bbdae9c3951ab84
SSDEEP

12288:NS+9rZ9Ptgi8Ht1dgihUcPUyDhNaIiAdz:NdX99qdguDx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
116c2bb302396ba1ad6ebfba627e091f

Files

116c2bb302396ba1ad6ebfba627e091f
.exe windows:4 windows x86 arch:x86

3eb07b4a9b121cf3b179088258982887

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

version

VerQueryValueA

gdi32

UnrealizeObject

comctl32

ImageList_SetIconSize

winmm

timeGetTime

Sections

CODE
Size: 387KB - Virtual size: 896KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE