1aae8d9ab91e55d14990e7495042dea7 | Triage

Sharing

General

Target

1aae8d9ab91e55d14990e7495042dea7
Size

111KB
MD5

1aae8d9ab91e55d14990e7495042dea7
SHA1

a3fbea652f1174639952aff44bbe8d2d2ce46c1e
SHA256

6cac6b66befca3bf10b5b08665dc401b87a04f4931d8a59e589c778172d0f839
SHA512

1c224b5a2f21be62bb57626d55fa207e554188a30a1b8ac287e4aa8423fe74de52e7cc5f097b733333c1c7b19fe9efd0f753dcafcd05e2780e2574aa0502ba12
SSDEEP

1536:R+Xob09sc9WGa0AGJlK+imQjWMnARo+cgBuyuib3i6J9f6k1XGrsVB:UXLscyMlhQjWMnARoYuyufk1XGoV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1aae8d9ab91e55d14990e7495042dea7

Files

1aae8d9ab91e55d14990e7495042dea7
.exe windows:5 windows x86 arch:x86

f27ba8c03e50def3ea907f2543e6bb60

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
lstrlenW
GlobalFindAtomA
QueryPerformanceCounter
GetCommandLineA
CopyFileA
GetModuleHandleA
lstrlenA
GetSystemTime
lstrcmpA
DeleteFileA
lstrcmpiW
VirtualAlloc
RemoveDirectoryA
GetWindowsDirectoryA
VirtualFree
RemoveDirectoryW
FindClose

user32

GetDC
TranslateMessage
GetDesktopWindow
CharNextA
GetSystemMetrics
GetParent

gdi32

CreateFontIndirectA
GetObjectA
GetPixel
GetClipBox
RectVisible
CreateCompatibleDC
SelectObject
CreateSolidBrush
RestoreDC
GetDeviceCaps
GetStockObject
SaveDC
LineTo
DeleteObject
GetTextMetricsA
SetTextAlign
DeleteDC
SetMapMode
SetStretchBltMode
SetTextColor
SelectPalette

glu32

gluNurbsCallback

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE