19bf51ff5c90f5822ed6772e1ac1dcb1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

19bf51ff5c90f5822ed6772e1ac1dcb1
Size

65KB
MD5

19bf51ff5c90f5822ed6772e1ac1dcb1
SHA1

edd8375e885b6fc69e9138dc97452dc37457521d
SHA256

7bebd07e9954379b860de3005ec34d02b1e22e2ac0360c8fa2011a19552d96af
SHA512

31b5760b1e3290d396346ffdbc37946d2fa6738d99c40fda4c5a7ae26c86444b11bead3dc8b948e682f26e8aa60e6b93d6c6265acdcaba6b9770c2c619cf7532
SSDEEP

1536:M/f39k/CjbWjyvuEwBVE8+Co8Uf86QHx:Ma6jSjPEwTWDc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
19bf51ff5c90f5822ed6772e1ac1dcb1

Files

19bf51ff5c90f5822ed6772e1ac1dcb1
.exe windows:1 windows x86 arch:x86

a53c8260dd6819d48328503605abda1c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_WDM_DRIVER
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVolumeInformationW
WritePrivateProfileSectionA
GetModuleFileNameA
EnumResourceLanguagesA
FindNextFileA
WriteConsoleW
SetConsoleNumberOfCommandsW
GetConsoleCommandHistoryLengthA
GetEnvironmentVariableA
GetLocaleInfoA
GetCurrentDirectoryA
SetConsoleInputExeNameW

user32

DefDlgProcA
LoadMenuA
GetClipboardFormatNameW
LoadMenuIndirectA
DispatchMessageW
ModifyMenuW
LoadKeyboardLayoutW
TabbedTextOutA
GetClipboardFormatNameW
SendNotifyMessageA

gdi32

CreateDCA
TextOutA
CreateICA
GetGlyphOutlineA
GetEnhMetaFileA

Sections

.text
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fasm
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1024B - Virtual size: 907B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ