1443de7d3fc5f0eb95669d4b422dbc96 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1443de7d3fc5f0eb95669d4b422dbc96
Size

79KB
MD5

1443de7d3fc5f0eb95669d4b422dbc96
SHA1

cb377103e055200a6bc3c331b7ed9c9c444c0237
SHA256

e8706c5e48cd33cae809abfd1b2ba940fdfd3fc571835ae712b2050fab179c02
SHA512

eaa6fcb3043b674c6c16acebb802c2ddece584d5de26085db7ea7ce2aa7a2bae35a8b99e1bad5abd98bf7363c2eaed57a8d2c2cf65e26eae8e9ca28accbd9909
SSDEEP

1536:HT2VK62xdgdBhbtbUuXYfB7DKLkRqdhEoblZ8ZAliIfOT:z2V72xdgDptbtXSB6LkRqdiSHEA4V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1443de7d3fc5f0eb95669d4b422dbc96

Files

1443de7d3fc5f0eb95669d4b422dbc96
.exe windows:4 windows x86 arch:x86

75341733be5c7eb0be0a1a7a1119ffb4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC
GetCursor
CopyImage
DialogBoxParamA
CopyRect
LoadMenuA
DialogBoxParamW
GetFocus
IsWindow
GetMenu
CloseWindow
IsMenu
EndDialog
CopyIcon
DrawIconEx
DrawTextA
DrawTextW
DrawIcon
InsertMenuA
GetDlgItem
CreateIcon
GetWindowTextLengthA
GetWindowTextA
LoadCursorA

kernel32

LCMapStringW
lstrcpynW
TerminateProcess
lstrcatA
LCMapStringA
GetStartupInfoA
CreateFileA
GetOEMCP
GetVersion
GetStringTypeA
GetCurrentProcess
WriteFile
MultiByteToWideChar
GetModuleFileNameA
GetCommandLineA
GetACP
lstrcpynA
SetFilePointer
GetCPInfo
GetStringTypeW
lstrcpyA
SetHandleCount
GetFileType

comctl32

DrawStatusText
ImageList_GetIcon
CreateToolbar
ImageList_AddIcon
CreateStatusWindow
ImageList_Destroy
ImageList_DrawEx
ImageList_DragEnter
ImageList_Draw
CreateUpDownControl
DrawStatusTextW
ImageList_Copy

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 17.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ