263ca5d3e7e5c7ab20abfa26b22a3227 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

263ca5d3e7e5c7ab20abfa26b22a3227
Size

811KB
MD5

263ca5d3e7e5c7ab20abfa26b22a3227
SHA1

7ad968d2b6347b7bb6b042b41138be19867bf81d
SHA256

43ac084f7cc71e46fa9b6a4bc063a29b2fb11120001831437c4652574b09a922
SHA512

14cdb7d90e2f34b04c2a87176ceabe0707de807fa95ebd955f1e2061370751bca3ea415c076c33f08af9b620c8cf4586caf8d95db7c446c04759627d07109c68
SSDEEP

24576:HOKZqWOrXBN/TjR/dHMq0ilzI7h/GbOg:HOKZDaXBN/PR/dOcE7h/i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
263ca5d3e7e5c7ab20abfa26b22a3227

Files

263ca5d3e7e5c7ab20abfa26b22a3227
.exe windows:4 windows x86 arch:x86

349b399f87e0e2c0dadb4ea431688c47

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalSize
ExitThread
GetPrivateProfileIntW
CreateFileW
ReadFile
ReleaseMutex
LocalFree
VirtualAlloc
CloseHandle
FreeConsole
GetTickCount
lstrlenA
GetModuleHandleW
GetComputerNameW
GlobalFree
GetDriveTypeA
FindVolumeClose
GetExitCodeProcess
SetEvent
GetLocalTime

user32

GetKeyState
GetMenu
GetClientRect
GetCursorInfo
GetSysColor
CallWindowProcA
GetDlgItem
GetCaretPos
CreateWindowExA
GetClassInfoA
DrawStateW
EndDialog
DispatchMessageA

clbcatq

ComPlusMigrate
ComPlusMigrate
ComPlusMigrate
DllGetClassObject
ComPlusMigrate

ntshrui

IsPathSharedA

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 801KB - Virtual size: 801KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ