26f9682729a0293d4238151b17b61914 | Triage

Sharing

General

Target

26f9682729a0293d4238151b17b61914
Size

146KB
MD5

26f9682729a0293d4238151b17b61914
SHA1

40ab4d57db8afd872d7fda67d9b2f5c25143ba99
SHA256

cb8a52aceaa775cc405865d194dd7603dfa0d5271e6044f6eb152f1817f6b460
SHA512

a96c3757bda1ef1e86837c64f2c958d16a24db23ea714e0cd057c1c39eca683e97b59711743317f08acb39d4bc5177859fab311570128887297743cfd7871ae4
SSDEEP

1536:XsDutQIT4oGIA3Wf8ci8PnCt3emmOJhicqjWnBp5lAGDjBuvC8YWcwqVTZ:u/oGIA3WRiinQ3egJRqCnBZAGDFQt3M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26f9682729a0293d4238151b17b61914

Files

26f9682729a0293d4238151b17b61914
.exe windows:5 windows x86 arch:x86

bdbfc05ef5f4b1b8ea21e84b76dd5e3a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

AppendMenuA
GetScrollInfo
AlignRects
CloseWindow
IsWindow
DialogBoxParamW

kernel32

CopyFileA
GetCommandLineA
GetLastError
FreeResource
CopyFileExA
FormatMessageA
ExitProcess
GetFileType
lstrcatA
CreateDirectoryA
HeapFree
FindClose
GlobalFree
ReadFile
CompareStringA
ExitThread
GetPriorityClass
FlushFileBuffers
GetStdHandle
WriteFile
DeleteFileW
OpenFile
GetCPInfo

advapi32

RegCreateKeyExA
RegQueryValueExW
RegLoadKeyA
RegDeleteKeyA
RegFlushKey
RegOpenKeyA
RegGetKeySecurity
RegCreateKeyW

Sections

.g3afa
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.5hhgc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dbe4
Size: 114KB - Virtual size: 469KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.2399d
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ