2645119b5764a54e14e163c19dd263d7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2645119b5764a54e14e163c19dd263d7
Size

34KB
MD5

2645119b5764a54e14e163c19dd263d7
SHA1

b5566c2c7de783c63d72bbdc06fcd3f4ccb4d2b5
SHA256

d7f3cfffaff305200027d3e32c673e702f671b0f38da5b09f9631e74b5c3f7aa
SHA512

ad0f01400306598664b1de45177c0002af6f212f674d7e5ce4ef4ef4d404b4f87c7983d6890bcd71400d6ae3315c1ee61eee1c75ea50d4e82a4df3ee1796d8d7
SSDEEP

384:SQM7/TzZfbi9lbFRI/he/X2sFNFmo96nFfKkUoZkLglLV8M81hALF9DHMcm5+K9p:SQqERmhe/msTFmNlUtcE1hALFdsf9W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2645119b5764a54e14e163c19dd263d7

Files

2645119b5764a54e14e163c19dd263d7
.exe windows:4 windows x86 arch:x86

af7fdb9ebf2cb69a553a3b994499fc16

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleWindow
CompareFileTime
CopyFileW
CreateThread
DefineDosDeviceW
EnumResourceTypesW
GetCommConfig
GetDateFormatW

msvcrt

_mbccpy
_mbctombb
_mbsdec
_pctype
_snprintf
_snwprintf

shell32

DragQueryFileAorW
StrStrIA
DuplicateIcon

Sections

.text
Size: 20KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE