21188dad4d39ff289ad13043a1c71d49 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

21188dad4d39ff289ad13043a1c71d49
Size

152KB
MD5

21188dad4d39ff289ad13043a1c71d49
SHA1

b79374ff1d66d6578b5112f245a0654fb5769b03
SHA256

3125ad2f140b93377f93d241c9fa782c32490e246625df0bd245b6c42a92c611
SHA512

6ef6428ca37f48f4bcea7bc6fcc57babcc32cc05ca1bd00858dd4c292334dfa0139318439d4d9f62eb47656dca7b12f14b6286bfa17561c37e0da1e3117632f1
SSDEEP

3072:cvmT3KotqYDrdj8sryn/8F5GeguPywvgkfc5PbZciD3DJ1zy:X1Ew5j9mn/exaRkfctbJ/J1zy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
21188dad4d39ff289ad13043a1c71d49

Files

21188dad4d39ff289ad13043a1c71d49
.exe windows:4 windows x86 arch:x86

5e53be22baee17c8ecbe5c3a74868cab

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
ExitProcess
GetCommandLineA
GetModuleFileNameA
GetModuleHandleA
GetVersionExA
GlobalMemoryStatus
HeapAlloc
HeapCreate
SetEvent
TlsSetValue

advapi32

QueryAllTracesA

ole32

CoTaskMemFree
IIDFromString
IsAccelerator
IsEqualGUID
IsValidInterface

setupapi

SetupDiLoadClassIcon
SetupDiGetDeviceInstanceIdW

olepro32

OleLoadPicture
OleCreatePropertyFrame
OleCreateFontIndirect
OleCreatePictureIndirect

user32

GetMessageTime
GetThreadDesktop
MessageBoxW
OemToCharW
GetAncestor

Sections

.text
Size: 57KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE