16e7cd7748c452dded8e79d76415d389 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16e7cd7748c452dded8e79d76415d389
Size

13KB
MD5

16e7cd7748c452dded8e79d76415d389
SHA1

4a47889cb86e301d8db8cae2fce16d3a8b9342bd
SHA256

b04b2d1a0313c77b0cd002b125dd1f87eca8b0eca73f8323cf2d2a1781e22859
SHA512

136e6b9d12b86b967bfc8d82f22aa9122c4bffbbc97425bd255aa97ea4073e8b13297bb0a0ea6122f38e9c9a4e92c7e4fbc5a030d90ca4e510eba7990ae03f10
SSDEEP

192:MxhHPrpimhyl731PagdRmtvebDCsdViWdyj8eG5XYILk8LJsSdrHHtVTglNMt9Ia:zmAZlDAkuyv0Yeat57dENa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16e7cd7748c452dded8e79d76415d389

Files

16e7cd7748c452dded8e79d76415d389
.exe windows:4 windows x86 arch:x86

aa49fca3fe47565365f9c6e11c4606bc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

ZwClose
DbgPrint

comdlg32

GetSaveFileNameA
PrintDlgA

gdi32

CreateSolidBrush
EnableEUDC
ExtCreatePen
CreateDIBitmap
CreateFontA

comctl32

MakeDragList
ImageList_AddIcon
ImageList_GetImageInfo
InitializeFlatSB
MenuHelp

msvcrt

_HUGE
__RTCastToVoid
_chdrive
_cgetws
_ctype

Sections

.text
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE