26d2052f8cc1e2f9c0f6194eec0ea7d8 | Triage

Sharing

General

Target

26d2052f8cc1e2f9c0f6194eec0ea7d8
Size

56KB
MD5

26d2052f8cc1e2f9c0f6194eec0ea7d8
SHA1

d2fd753936a16a7fae2eb2fb7a6cecd321052a50
SHA256

2e373b07cab3175cebb5c54adfb0668ad9cfb9ec7ca95c8bcb9dbc436ac75a96
SHA512

e4cb53464389bf0589d00240f2b4457df51240f6a10ba47a4268d61ace4d869e4a52794153b56ce1ad3939d50a4c1823e48fe297c340e9d7c1d2b233211987ba
SSDEEP

768:9E90xI6DqTcgjl+QlM3bCKvARbg/45gDallf7DzDnl4qXM71hIm4:2f6D6VjYfvAa/RDaDfviGM71h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26d2052f8cc1e2f9c0f6194eec0ea7d8

Files

26d2052f8cc1e2f9c0f6194eec0ea7d8
.exe windows:4 windows x86 arch:x86

7402faf9a7c1a496cb921af242347a56

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryDosDeviceW
SetEvent
GetTickCount
GetDriveTypeW
SetWaitableTimer
GetModuleFileNameW
Sleep
GlobalAddAtomW
GetModuleHandleW
DeleteFileW
GetCurrentThread
MultiByteToWideChar
WideCharToMultiByte
LoadLibraryW
GetProcAddress
LoadLibraryA
WaitForSingleObject
LockResource
GetUserDefaultLangID
FindFirstFileW
FreeResource
FindFirstChangeNotificationW
SetCurrentDirectoryW
GetLocalTime
CreateFileW
GlobalUnlock
CreateProcessW
GetLogicalDrives
CreateEventW
SuspendThread
MoveFileW

user32

SystemParametersInfoW
DialogBoxParamW
PostThreadMessageW
GetMessageW
wsprintfW
EndDialog
SetWindowTextW
DestroyMenu
InvalidateRect
ReleaseCapture
LoadIconW
WindowFromPoint
GetParent
GetDlgItem
IsDlgButtonChecked
RegisterWindowMessageW
EnableWindow
LoadImageW
OffsetRect
SetForegroundWindow
GetWindowTextW
PostQuitMessage
FillRect
CreatePopupMenu

Sections

.text
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE