12b114e7b39342b0ac089e6260e23323 | Triage

Sharing

General

Target

12b114e7b39342b0ac089e6260e23323
Size

261KB
MD5

12b114e7b39342b0ac089e6260e23323
SHA1

8f3ec843cc8e86432f9e5fea20e0666c248bd9d9
SHA256

51d7a8a6e5d5e1b9fbc0630fe6ed36e3d6ab9494e68d724feaf5e3ad55ba1f57
SHA512

bafe23addc50082cc9d18bd209b7332a851eef2efc1e95f07905b064c4edef745828aa424d9f356bcd7d4101a168b3c74b9ac4132a9279a60fce3b3d190bb57d
SSDEEP

6144:HTcRTjalGw/ZoTBQUgCn0KXqNU1pW0Fs/lwj:zcRTOGsZo+C5qNy58+j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
12b114e7b39342b0ac089e6260e23323

Files

12b114e7b39342b0ac089e6260e23323
.exe windows:5 windows x86 arch:x86

d4c1beda791df121edc316d62538ff7c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

WindowFromDC
DispatchMessageA
TranslateMessage
GetMessageA
UpdateWindow
GetWindowLongA
EnableWindow
GetDlgCtrlID
GetClipboardViewer
SetWindowTextA
CheckDlgButton
EndPaint
LoadIconA
LoadCursorA
RegisterClassExA
BeginPaint
CreateWindowExA
ShowWindow

gdi32

CreateEllipticRgn
SetMapMode
DeleteObject
GetStockObject
CreatePen
CreatePatternBrush

shlwapi

StrIsIntlEqualW

ole32

CoGetCurrentProcess
CoCopyProxy
CoGetMalloc
GetRunningObjectTable

oleaut32

VarDateFromDec

kernel32

LeaveCriticalSection
DeleteCriticalSection
QueryPerformanceFrequency
InterlockedExchange
GetStartupInfoA
SetFileAttributesA
GetModuleHandleA
HeapFree
GetEnvironmentStrings
GetACP
GetLastError
EnterCriticalSection
InitializeCriticalSection
HeapAlloc
HeapCreate
HeapDestroy

Sections

.text
Size: 257KB - Virtual size: 257KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE