244bbe936f210eb0488b6c68c1562b0a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

244bbe936f210eb0488b6c68c1562b0a
Size

273KB
MD5

244bbe936f210eb0488b6c68c1562b0a
SHA1

2890ea226888d1ee1ad427d66c07f455e545bd05
SHA256

71567c7ab5181e4ecaf7d388f5a6f541a39c3d3928419e159045d731bc2a4b64
SHA512

de9676298f56e804422608335aa21e5eb601db0dd31c548c9055febb21b2093cd53676b81ee34de1c693990082822682894068a17b03b976646ce3066b956fb1
SSDEEP

6144:VWtCNMMqL1eqZB2FttCEy0HoBlMasrjL8:V08FEB2Ftte0IXMasrc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
244bbe936f210eb0488b6c68c1562b0a

Files

244bbe936f210eb0488b6c68c1562b0a
.exe windows:5 windows x86 arch:x86

7755a1137170e48e6c0ba2e8665fdf63

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDlgItem
BeginPaint
IsMenu
EndDialog
DrawIcon
LoadMenuA
GetWindowTextA

kernel32

GetLocalTime
CreateDirectoryA
ExitProcess
CompareStringA
FlushFileBuffers
OpenFile
GetCPInfo
CopyFileExA
FindClose
DeleteFileW
GlobalFree
lstrlenA
WriteFile
FormatMessageA
ReadFile
GetFileType
HeapAlloc
GetPriorityClass
CopyFileA
GetFileTime

advapi32

RegCreateKeyW
RegEnumKeyA
RegLoadKeyA
RegOpenKeyW
RegCreateKeyA
RegOpenKeyExA
RegQueryValueA

Sections

.e051
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.6fa1
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.e46f
Size: 228KB - Virtual size: 516KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.2cdf6
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.b348
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ