255f009a0c1033fa49ce8f962b5c022b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

255f009a0c1033fa49ce8f962b5c022b
Size

58KB
MD5

255f009a0c1033fa49ce8f962b5c022b
SHA1

ae0d8b09c8fc0f32eecbd03cd1e34df00d463c0a
SHA256

de335e05d2e7756b67169f1cd5962dea1a4ddbd2c6927c1f75cff4d39d12a2b6
SHA512

af94f3d9486c9e556a956a4c6bbaf8f68672a2d54d46da3819fae46713221606a0455668beaef39faa8a15bf226c307120377afe7a89c7e018046644873385ac
SSDEEP

1536:ZPZR4ZPcORMQ3XJDlCooLIyyJgl5cNECs+a3IzmUDr:ZRSZPHjbI8c5JB3IDr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
255f009a0c1033fa49ce8f962b5c022b

Files

255f009a0c1033fa49ce8f962b5c022b
.exe windows:4 windows x86 arch:x86

4c47f97f96441a8933e9455de6ff055c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

GetTokenInformation

kernel32

DeleteAtom

shlwapi

PathAppendA
PathFindOnPathA
SHAutoComplete
SHCreateStreamWrapper
SHRegCreateUSKeyA
StrIsIntlEqualA
StrRChrIA
StrSpnA
UrlCombineA

user32

DdeFreeDataHandle
DestroyWindow
GetListBoxInfo
GetOpenClipboardWindow
GetUpdateRect
InternalGetWindowText
LoadStringA
RegisterHotKey
ReplyMessage
ScrollWindow

Sections

.hwbu
Size: 22KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.twlwd
Size: 5KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kzcxk
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.byhgp
Size: 25KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ