1b329895e50c2a9b7c90a83f5b28756c | Triage

Sharing

General

Target

1b329895e50c2a9b7c90a83f5b28756c
Size

81KB
MD5

1b329895e50c2a9b7c90a83f5b28756c
SHA1

b264eed7fc0d506c16d6cb5cc3bde5eaa6c990a0
SHA256

41fce7293099ce27c60697e5fced7d3c2bf0c9f4925b987ced022b2b965e19ab
SHA512

f1a9224b3dd687bf892636982efda7cb7e802600b8be7b99548c72e58d34c9c01edbdc9a00a154cfc898641b8864f55b3e04eafb800368fd9f603addbfb6669a
SSDEEP

1536:aRqxN/JVDZtV5wKIRyZeFnUZYQQCttWqT:P/dtV5wRyZCUZAN+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1b329895e50c2a9b7c90a83f5b28756c

Files

1b329895e50c2a9b7c90a83f5b28756c
.exe windows:4 windows x86 arch:x86

230a6002e3450c556c3382d343e6af83

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
FindClose
GetFileType
GetTempPathW
GetModuleHandleW
CloseHandle
GetModuleHandleA
CreateFileW
CreateFileA
GetTempPathA
GetStartupInfoA

user32

DrawTextW
IsWindowVisible
DeleteMenu
GetWindowRect
BeginPaint
ChangeDisplaySettingsA
DefWindowProcA
IsWindowEnabled
ShowWindow
GetWindow
DestroyWindow
EnableWindow
CloseWindow
CloseClipboard
CreateWindowExA
DrawTextA
EmptyClipboard
GetWindowTextA
DefWindowProcW
GetWindowTextW

gdi32

CreateCompatibleDC

advapi32

RegCloseKey

oleaut32

SysAllocStringByteLen
CreateErrorInfo
SysAllocString
SysAllocStringLen
SetErrorInfo
SafeArrayCopy
GetErrorInfo
SafeArrayCreate

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
strcmp

Sections

.text
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ