1a15794535503cd1ec60d05133806e19 | Triage

Sharing

General

Target

1a15794535503cd1ec60d05133806e19
Size

299KB
MD5

1a15794535503cd1ec60d05133806e19
SHA1

1aedbc0f29cc8d952ed38f4f2d770b99a4d41415
SHA256

45a52b77b5a3f48b0981ddf23c99ca6c3162f351290a10e0a4853d01d48e5e0d
SHA512

7c2b427dcabab64c33500522bbb1917ec9072cd80667d7260b1288d6c7334acc6de1d195c7cabf6dcc70f7d406eb8c08eb39e14282189b1dcddfb2b568bffbd8
SSDEEP

6144:XAYEC5+tSkUGr4EnbSetLTs7TOd3o3PuoDtrlo+O:VE0+Ikh92etZE3r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1a15794535503cd1ec60d05133806e19

Files

1a15794535503cd1ec60d05133806e19
.exe windows:4 windows x86 arch:x86

d2a8e0e23907bb86962f77540b42fbee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEvent
GetCurrentDirectoryA
CreateThread
LocalFree
LocalUnlock
GetCommandLineW
lstrlenA
GetSystemTime
LoadLibraryW
CreateThread
GetTickCount
Sleep
CreateFileA
HeapCreate
GetComputerNameA
UnmapViewOfFile
SetLastError
GetModuleHandleA
CloseHandle
PulseEvent

user32

DrawMenuBar
CallWindowProcA
CreateWindowExA
FillRect
GetDC
CheckRadioButton
GetScrollBarInfo
IsWindow
GetDlgItem
SetFocus
GetKeyState
DispatchMessageA
DrawEdge

clbcatq

SetSetupSave
CheckMemoryGates
SetupOpen
UpdateFromAppChange
DowngradeAPL

desk.cpl

InstallScreenSaver

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 628KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ