241fe858660bcd27043995b72afc0d6f | Triage

Sharing

General

Target

241fe858660bcd27043995b72afc0d6f
Size

216KB
MD5

241fe858660bcd27043995b72afc0d6f
SHA1

4047f46a536c1e311823f1652dcbaa9270c894d6
SHA256

05ff3b7fd1303d20ac1a345413d7f5a76401f93ff0e682f8d6d060ae38633739
SHA512

e7ae32953d2e69d553251f07faad03d23dbabd9641b3ec57d71cc851d800dcda9ed75a84798431f2b6e0ae37e4840ce35bca6724aece3bb83ffd42f0a917260c
SSDEEP

6144:r5bGvp5ZD6Fd+XQ9kwLSFMkOjM8/r4Ef/gsk2oRbQz4zt2K:Vyvl6PZu2vj4vsZoRG4zt5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
241fe858660bcd27043995b72afc0d6f

Files

241fe858660bcd27043995b72afc0d6f
.exe windows:5 windows x86 arch:x86

a9b4e3ebac443e55b744cb9d1a21602a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetFileAttributesA
SetFileAttributesW
CloseHandle
GetModuleHandleA
HeapFree
WaitForSingleObject
ExitThread
GlobalSize
HeapCreate
SuspendThread
EnterCriticalSection
GetCurrentDirectoryW
GetDriveTypeA
ReadFile
GetFileType
GetCommandLineW
GetEnvironmentVariableW
GetCommandLineA
GetFileTime
GlobalLock
SetLastError
MapViewOfFile
IsBadReadPtr
SetLastError

uxtheme

GetThemeEnumValue
DrawThemeBackground
SetWindowTheme
GetThemeColor
GetThemeTextExtent
CloseThemeData
CloseThemeData
OpenThemeData
GetThemeTextMetrics
GetWindowTheme
DrawThemeEdge
GetThemeBool
IsThemeActive

deskmon

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 738KB - Virtual size: 738KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE