135af372d9d984358b5f5886a5ce2d9e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

135af372d9d984358b5f5886a5ce2d9e
Size

157KB
MD5

135af372d9d984358b5f5886a5ce2d9e
SHA1

5a28bd77318f0fb00b9df49e572f01f2fa3bf7e6
SHA256

6fc7c3dfca878c8a9193b0188615c2174e89ded22f50fc7399c00b592ce06962
SHA512

af879557dee000d78a57d251e5b9cdca3d3245350f546e8ed6c944f5574b16db9aa8f459d111a9f5c3e3419bb37fd330272b6d27eca26b4732020c0e5f0f858b
SSDEEP

3072:DWbTMCFfJg4SqfUdWp5FPxtjYBDhHLnhbAohs3Npoeec76F6jYh:DWbjmYaWpPPxtjYBDhvetHWF6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
135af372d9d984358b5f5886a5ce2d9e

Files

135af372d9d984358b5f5886a5ce2d9e
.exe windows:5 windows x86 arch:x86

379fc0e3e1f14eb9cb4c35a68b688f39

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

UnrealizeObject
CreatePalette
SetROP2
CreateFontA
EndPath
CreateDCW

kernel32

ExitProcess
GetFileAttributesExW
FindResourceW
GetTickCount
ExitThread
GetSystemDirectoryW
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
DuplicateHandle
GetDateFormatW

user32

SetFocus
FindWindowExA
CharLowerW
SetWindowPos
SetLastErrorEx
ShowCursor
UnionRect
LoadBitmapA
InSendMessageEx
DefDlgProcW
SetMenuItemInfoW
OemToCharBuffA
CascadeWindows
GetClipboardData

shlwapi

StrToInt64ExW
PathCanonicalizeW

Exports

Exports

?_xtjpuWQD__M_mWHQJXG_@@YGIEF@Z
?ZR__TB_tc_z@@YGXIM@Z
?_PLBvJfVO_WL_JSM__OX@@YGMK@Z
?J_APT_ELWy_@@YGPADDPAJ@Z
?_ZUkXRUVJM_OKOOWHYR@@YGPAGPAFH@Z

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 380KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ