2235c71bf377ec0be00f9ab46299bb73 | Triage

Sharing

General

Target

2235c71bf377ec0be00f9ab46299bb73
Size

185KB
MD5

2235c71bf377ec0be00f9ab46299bb73
SHA1

56cf2717d493a42e5e2035223c1b2a3e860b20f7
SHA256

2c0e598e4697f890b4675c25e573b64280098755fef31e7fe6035c9b8c212133
SHA512

811cb3eb6c9a861e9a55f1378b5a83516af562118a799e6ef7e19800259fd87993f21ff0fa277b49a590096f6c3baf01377647feb512b721ae79da0b04118188
SSDEEP

3072:7i+pQ7/lsHcFoIl77Hbb6sOCrJpYJO6RqJV+8YM4dFYCsHwTUJbSt1KGQHcY:7i8Q7/l+MNl77Hbb1JiO6YJV+8YMXnHZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2235c71bf377ec0be00f9ab46299bb73

Files

2235c71bf377ec0be00f9ab46299bb73
.exe windows:4 windows x86 arch:x86

0a5fd01ef62ca2e3f60a321889f909e6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
HeapReAlloc
GetProfileIntA
VirtualProtect
SuspendThread
CompareFileTime
CloseHandle
GetModuleHandleA
lstrlenA
GetCommandLineA
GetSystemDefaultLangID
GetConsoleCP
AddAtomA
WaitForMultipleObjects
GlobalUnlock
OpenMutexA
GetVersion
GetTickCount
InterlockedExchange
GetStdHandle
WaitForSingleObject

user32

GetCursorInfo
SetWindowPos
DialogBoxParamA
MessageBoxA
DrawCaption
SetPropA
DispatchMessageA
GetKeyState
CopyImage
GetDlgItem
EnableScrollBar
DispatchMessageA
IsDialogMessage
FindWindowA
DragObject
DestroyMenu
InvertRect
SetScrollInfo
GetKeyboardLayout
CreateMenu
InsertMenuA
CreateIcon
CreateCursor

advapi32

RegQueryInfoKeyA
RegEnumKeyA
RegEnumValueA
RegCloseKey
RegCreateKeyExA

uxtheme

GetThemeColor

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 540KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ