16105aa09dd9b4c0dbddc14d3d90031d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16105aa09dd9b4c0dbddc14d3d90031d
Size

26KB
MD5

16105aa09dd9b4c0dbddc14d3d90031d
SHA1

06556d70abb51d7142f2245a886c26ceefd3638c
SHA256

61bf6e1f8ac04b3ae4a137a9a5b5d35ca7fb39bbb7d0300a5547a14d0ebd1a13
SHA512

9339dd41ac89dc13232c5043551a6e0ba9598e34805656d6f3ba4bd6f75d16106d711642921da987ca39c80bd1d92c38fac5e5242cfeafcdaab31c76dd3b6bca
SSDEEP

384:S84PPnz7X+TV2WeATPQ7vIduf4SQ6kzXcG/GSiXw2REf5A:S843z7X+TMW3TPOAEfdsfXMw2j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16105aa09dd9b4c0dbddc14d3d90031d

Files

16105aa09dd9b4c0dbddc14d3d90031d
.exe windows:4 windows x86 arch:x86

419e4b5aa3ad62689e7413b45f9e6350

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringW
GetStringTypeA
GetStringTypeW
SetHandleCount
GetModuleFileNameA
GetACP
TerminateProcess
GetCPInfo
SetFilePointer
GetFileType
GetOEMCP
GetCommandLineA
lstrcpyA
GetStartupInfoA
WriteFile
CreateFileA
lstrcpynW
lstrcatA
lstrcpynA
LCMapStringA
GetCurrentProcess
GetStdHandle
GetVersion

user32

LoadCursorA
DrawIcon
CloseWindow
GetDC
CopyIcon
GetMenu
GetCursor
IsMenu
GetWindowTextA
EndDialog
DrawTextA
GetWindowTextLengthA
InsertMenuA
DrawTextW
DrawIconEx
CopyRect
DialogBoxParamA
IsWindow
CreateIcon
GetFocus
LoadMenuA
DialogBoxParamW
CopyImage
GetDlgItem

comctl32

DrawStatusTextW
ImageList_Add
ImageList_Draw
ImageList_GetIcon
CreateToolbar
ImageList_Create
CreateToolbarEx
CreateMappedBitmap
CreateStatusWindowW
ImageList_EndDrag
MenuHelp

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 17.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ