163f7729eb0550fc312d6262377756e8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

163f7729eb0550fc312d6262377756e8
Size

12KB
MD5

163f7729eb0550fc312d6262377756e8
SHA1

7e0b9d111946c075053b27959db266e7e832af04
SHA256

b470e72ebbc6c5435bca44defaa29e58ac81b5eebb2b7750f470b2d954207699
SHA512

1303bc0cda15085641605d5445dcb9a2904fdb0cb15170a347d3388954d44f6143105c35881ecdcdabace4da688ba7e4fe0095a50556908de2739a921a07fe04
SSDEEP

192:d8xzWSYeGxBdjWmSKE7bUxJkG1AKk8zOp4TPHzz4nD3geI8X0X0rInurH1:d8dWSYxXg7Abxk8zfPTz4DvX0X0kub

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
163f7729eb0550fc312d6262377756e8

Files

163f7729eb0550fc312d6262377756e8
.exe windows:4 windows x86 arch:x86

2df84304be219d9f06fb7c8f123492a4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DefWindowProcA
DialogBoxParamA
ShowWindow
SetDlgItemTextA
SetCursor
SetClassLongA
MessageBoxA
LoadCursorA
GetDlgItem
DrawTextA
EndDialog
FillRect
GetClientRect
wsprintfA

kernel32

CreateProcessA
ExitProcess
GetCommandLineA
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetVersionExA
HeapAlloc
HeapFree
LoadLibraryA
LocalAlloc
LocalFree
MultiByteToWideChar
Sleep
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpyA
lstrcpynA
lstrlenA

shell32

SHGetSpecialFolderPathA

winmm

timeGetTime

advapi32

RegCreateKeyExA
RegDeleteValueA
RegEnumValueA
RegQueryValueExA
RegSetValueExA
RegCloseKey

ole32

CoInitialize
CoUninitialize

gdi32

CreateSolidBrush
SelectObject
SetBkMode
SetTextColor
CreateFontIndirectA

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE