158942ca12791ff2074fe74d7a377fbc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

158942ca12791ff2074fe74d7a377fbc
Size

6KB
MD5

158942ca12791ff2074fe74d7a377fbc
SHA1

bcd2ce7531ae703671d33da042278c08bf682dfb
SHA256

bfaea269dfebf1949ff46740b0bf804eb68e2d2ead223b898f9581dc33c96417
SHA512

9dedf1f02651cbb673b2ae831cd8999bbabbfa76bf27b85ed8e1129d0a68080a5216f9caea10bc495c6d022cba31b1d94c7b268096e853aee00fedc69643a86f
SSDEEP

96:nFK8R+KMBF4tI8G0p6h+O0CXJsCaHkKl14PJPKSbvXalaaaa/5gf4qV2sQ:n48R+Xmg0Mhj0E+khPwngAkQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
158942ca12791ff2074fe74d7a377fbc

Files

158942ca12791ff2074fe74d7a377fbc
.exe windows:1 windows x86 arch:x86

b3b6067c8233a95854940a4e5dfafb65

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

malloc
free
printf

comdlg32

ReplaceTextA
PageSetupDlgA
dwOKSubclass
ChooseColorA

Sections

.text
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 4B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 744B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE