1273fe9fe86acd5be968607899b17a8b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1273fe9fe86acd5be968607899b17a8b
Size

93KB
MD5

1273fe9fe86acd5be968607899b17a8b
SHA1

82a26e3aee2daa1301ecdd69d46d2a791fa88f4b
SHA256

28aba6406167626b841500477d2d9a11e10c1d0ca0bdc0f2c72cf66132c42b7d
SHA512

7c7b0667eb929ffd33ceda471fd9479ed878a276879a4bb6a8cac1f77f7a2f7c098c902736f77a727ff6c6a71dce1c14fff4260cac7ff8922fccff11e2b4f5b6
SSDEEP

1536:4VBw3AZ0g03bGmVIV37tHdhkKSJGe/m4teLCPOXqqBaFyoMPILi1AudXF+Hh5Ks+:w9L0qYIF7tPEJf9tjOXLPuZudXwLK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1273fe9fe86acd5be968607899b17a8b

Files

1273fe9fe86acd5be968607899b17a8b
.exe windows:5 windows x86 arch:x86

bb4f66e84feef153d944ebd63f523fca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CheckMenuRadioItem
EndPaint
GetWindowLongA
LoadCursorA
LoadIconA
RegisterClassExA
EnableMenuItem
SetWindowTextA
BeginPaint
GetMessageA
CreateWindowExA
ShowWindow
UpdateWindow
TranslateMessage
DispatchMessageA

gdi32

CreateSolidBrush
GetBkColor
CreateHatchBrush
LineTo
DeleteObject
GetStockObject

ole32

CoTreatAsClass
CreateObjrefMoniker
StringFromGUID2
CoInitialize
OleRegGetUserType
CreateItemMoniker
ProgIDFromCLSID

oleaut32

SafeArrayAllocDescriptor
SafeArrayDestroyDescriptor
CreateErrorInfo

kernel32

QueryPerformanceCounter
GetACP
InterlockedIncrement
FindAtomA
GetFileSize
GetLastError
GetStartupInfoA
EnterCriticalSection
InitializeCriticalSection
HeapDestroy
GetModuleHandleA
HeapFree
GetCommandLineA
DeleteCriticalSection
GetVersionExA
HeapCreate
HeapAlloc
LeaveCriticalSection

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE