25d2f83dbb2ad68c559932a1355210a6 | Triage

Sharing

General

Target

25d2f83dbb2ad68c559932a1355210a6
Size

32KB
MD5

25d2f83dbb2ad68c559932a1355210a6
SHA1

7d7ccee5ddc948905ecc8c88acd537098898bf13
SHA256

f33891611fc032bca63cf58f9c549a9b6689022fa2517ddd46cbe738943a57c4
SHA512

47391c4fe09d932ed5fd6c92435591c746874d28669b32b257587f206b2765913f8005253bb983e49d1eb30564367162f55301c35e0ccb298b054a6d0f68c555
SSDEEP

192:qNF31mXhG7Yh5kP/mmfZJQnhqCGErSE7+g/xnaMVj/NF31mXhG7Yh5kP/:qFDxPhZpCGErpagY2/FDxP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25d2f83dbb2ad68c559932a1355210a6

Files

25d2f83dbb2ad68c559932a1355210a6
.exe windows:1 windows x86 arch:x86

27153e546a26a5ab74159f8315ba7739

Headers

Imports

kernel32

DeleteFileA
ExpandEnvironmentStringsA
FreeLibrary
GetCommandLineA
GetExitCodeThread
GetFileAttributesA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetSystemDirectoryA
CloseHandle
GetTempPathA
HeapAlloc
LoadLibraryA
CopyFileA
LocalAlloc
LocalFree
QueryPerformanceCounter
RtlUnwind
RtlZeroMemory
CreateFileA
SetFilePointer
WaitForSingleObject
WriteFile
CreateProcessA
CreateThread

user32

LoadCursorA
LoadIconA
GetMessageA
TranslateMessage
DispatchMessageA
wsprintfA
RegisterClassA
CreateWindowExA
DefWindowProcA

advapi32

RegFlushKey
RegOpenKeyExA
RegSetValueExA

crtdll

__GetMainArgs
_sleep
exit
memset
raise
signal
strcat
strchr

Sections

Size: 28KB - Virtual size: 28KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE