14d31b2abd2845693aa8afa72d453ffe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

14d31b2abd2845693aa8afa72d453ffe
Size

28KB
MD5

14d31b2abd2845693aa8afa72d453ffe
SHA1

a2527d659fdd7d2be626536377dcc6fe34a40829
SHA256

894a09917915234ab1a977004a9ec1b28721d1d93f278a646ead06f782b4b851
SHA512

e194cb62486b1614ecee3e986272d47d6b03d44aee724002863857268f8b8fe952497cf476e628929482933d4f37840a933e529617f60eb0b58f7ed988718f1c
SSDEEP

768:R/JgJ/XoMcfno5VZwVNyF1f2b1OAS3te7pgIO4:Zayn2VZ6cF1f2sX3te7pgY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14d31b2abd2845693aa8afa72d453ffe

Files

14d31b2abd2845693aa8afa72d453ffe
.exe windows:1 windows x86 arch:x86

011e0b848361060bdab1cc9a5046ecb0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindow
GetWindowLongW
HideCaret
IsChild
IsMenu
GetMonitorInfoW
GetSysColorBrush

shell32

SheGetDirW
StrChrW
StrNCmpW
WOWShellExecute
SheFullPathW
FreeIconList
SHEmptyRecycleBinW

Sections

.text
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE