1799254ccbf9d78935f1ed4df26149e2 | Triage

Sharing

General

Target

1799254ccbf9d78935f1ed4df26149e2
Size

236KB
MD5

1799254ccbf9d78935f1ed4df26149e2
SHA1

ff037f111a2d2221e6fddf44b01e10440c5ec2c6
SHA256

c6ee4f6ecf9b3e8b488eccb578aa397e416d5bea16f3e771987726ee2f7af93d
SHA512

8094709f8b4ad73ed74902a962da60b7960a158ca58284e76b41139653e1ccc7f1c9c4741f1c3c4bfd77891508f1cc2fa59b9cadecdb63d1fec1461d917ff40a
SSDEEP

6144:pcwuO3NYDsNAdnQWMAN6l5yjiqXRZtWpfvxx:pc7O3N50BMukyHgL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1799254ccbf9d78935f1ed4df26149e2

Files

1799254ccbf9d78935f1ed4df26149e2
.exe windows:4 windows x86 arch:x86

08a2d2ae5ed011f7b011b31f9277e748

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
GlobalUnlock
SetErrorMode
LockResource
GetLocaleInfoA
GetACP
LoadLibraryExA
HeapCreate
FoldStringA
GlobalDeleteAtom
CloseHandle
Sleep
InterlockedExchange
VirtualProtect
GetLastError
GetStdHandle
RaiseException
EnterCriticalSection
GetDriveTypeA
SetConsoleCP
GlobalAddAtomA

user32

ReleaseDC
GetActiveWindow
GetClassNameA
ValidateRect
ShowWindow
SetForegroundWindow
ClipCursor
DrawTextA
GetCursorPos
DrawEdge
GetMenuItemInfoA
IsIconic
BeginPaint
GetWindow
GetFocus
CharToOemA
GetParent
GetWindowTextA
EndPaint

version

GetFileVersionInfoSizeA
VerFindFileA
VerQueryValueA
VerLanguageNameA
GetFileVersionInfoA

rasadhlp

WSAttemptAutodialName

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 704KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ