264236a1de58a7778211eacfae43bbaf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

264236a1de58a7778211eacfae43bbaf
Size

310KB
MD5

264236a1de58a7778211eacfae43bbaf
SHA1

6f3b51dc1a2accbe81b53949cccbe777df1e1d08
SHA256

7d19fcd917ddfc462aaeffb0f4ac0ac227fc5b61ebc05ca3f7b35d65d294132e
SHA512

2b91dbcecc5b646056407135f73ad03d0507490420e40e62401b87ea8421a76bc07f1a5cb50191d49297bbb539a1e09b7407c46b3012bbcfe7c9ba6f539ec4f3
SSDEEP

6144:I6Zrao04emcyblqFDXKXe7OQE5QXvN8qJ9bqvsHIv:I8LemtOz7OQE5QN1mKIv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
264236a1de58a7778211eacfae43bbaf

Files

264236a1de58a7778211eacfae43bbaf
.exe windows:4 windows x86 arch:x86

00c52a55c72510cecf51463a5747b32a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
GetDiskFreeSpaceExW
TlsGetValue
GetTickCount
GetDriveTypeA
Sleep
CreateMutexA
ReleaseMutex
CloseHandle
EnumResourceTypesA
GetCommandLineA
GetLastError
SetLastError
GetModuleHandleA
FindClose
GetExitCodeProcess
GetComputerNameA
VirtualProtect
LoadLibraryExA
FreeConsole

shell32

StrChrA
ShellAboutA
DragQueryFileA
SHFree
SHGetDiskFreeSpaceA
ShellMessageBoxA
SheChangeDirA
DragFinish
SHGetNewLinkInfo
DllUnregisterServer
SHGetSettings
DragAcceptFiles
SHGetMalloc

msports

ComDBOpen
ComDBClaimPort
PortsClassInstaller
ComDBReleasePort
ComDBClose

user32

MessageBoxA

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ