1531a732d3ae565426439b166bd3c0bb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1531a732d3ae565426439b166bd3c0bb
Size

72KB
MD5

1531a732d3ae565426439b166bd3c0bb
SHA1

786ddeb24e30afa5d04f411f5e16a5a14b3e22a7
SHA256

c26afcb31e9e3bc7994cfa2dbf13e4e70b71091fdad2a29e95b3bb84002de95f
SHA512

a7ea1edd414abf9aaa04e33d29ba3291c1511ed7520249f3b518c5992f1f53e9a7baa838c57c0dcc781fa7d9e41b2895771371b86fd1b4648ea1fef9fc769c96
SSDEEP

1536:XDwgRxzHIVjcT1da8LuwygZxtNSq+8KHn0Kpf+jhOF:XDwaucT3IwyG7MvtHhmoF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1531a732d3ae565426439b166bd3c0bb

Files

1531a732d3ae565426439b166bd3c0bb
.exe windows:4 windows x86 arch:x86

24c232389f26d381d464c9b6bd4714d4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawMenuBar
DrawCaption
DestroyMenu
DestroyCaret
CreatePopupMenu
CreateIconFromResourceEx
CreateIcon
CreateDialogIndirectParamA
CreateCursor
CreateAcceleratorTableA
CopyImage
CloseWindow
CharUpperBuffA
CharToOemBuffA
CharToOemA
CharPrevA
ChangeMenuA
ActivateKeyboardLayout

kernel32

CloseHandle
lstrlenA
lstrcmpiA
lstrcmpA
VirtualFree
TlsGetValue
TlsFree
Sleep
ReadFile
OpenFile
InitializeCriticalSection
GetTimeFormatA
GetLastError
GetFileSize
GetCommandLineA
ExitThread
EnumResourceNamesA
EnumResourceLanguagesW
EnumResourceLanguagesA

Sections

.text
Size: 21KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 47KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ