23e847741c85b67800e8747ae1c92fee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

23e847741c85b67800e8747ae1c92fee
Size

337KB
MD5

23e847741c85b67800e8747ae1c92fee
SHA1

1b8b804f5e45ef893f88c9269f4f3129f4fe8065
SHA256

48a3221bc67d3f5eb9cb6548cae777097d548f2658458317629cc7d39c978b03
SHA512

ca76415f51dc2111cacf2fa60be0db393739ed64f84dcf6989f4742402aee93d7afaa15c5e9c0ce188e82276165e81bac2e79e6e46683bb88e7ae04536504f19
SSDEEP

6144:Ssnhk7p4oiM3rk9dnyyw4D4dTV8c444ZIJhSvOJxc57vHhfhUSJ:Sshk7p1rAw4DG8cVhSvOiNhUS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
23e847741c85b67800e8747ae1c92fee

Files

23e847741c85b67800e8747ae1c92fee
.exe windows:4 windows x86 arch:x86

2fdf3370a483761808d213c87819a0af

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
LoadLibraryA
LocalFree
SetEvent
CreateFileA
GetComputerNameA
HeapCreate
CreateThread
FindAtomA
GetDriveTypeW
ReleaseMutex
SetLastError
GetCommandLineA
GetDiskFreeSpaceW
GetSystemTime
ReleaseMutex
LoadLibraryW
CloseHandle
GetFileAttributesA
lstrcatW

user32

CallWindowProcA
GetKeyState
DispatchMessageA
GetClassInfoA
DrawStateA
GetClipCursor
SetFocus
GetDlgItem
GetComboBoxInfo
FillRect
CloseWindow
CreateWindowExA
DestroyCaret

cryptnet

CryptGetObjectUrl
CryptGetTimeValidObject
CryptUninstallCancelRetrieval
CertDllVerifyCTLUsage
CryptCancelAsyncRetrieval

desk.cpl

DisplaySaveSettings

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 412KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 324KB - Virtual size: 324KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ