274756282f634c01a926028fc51a99aa | Triage

Sharing

General

Target

274756282f634c01a926028fc51a99aa
Size

26KB
MD5

274756282f634c01a926028fc51a99aa
SHA1

98407d47b4f8c35d9eda245fff496065f678ae41
SHA256

6e18bd61fd3740f8d1b7f45fa29a55d74fc849e79eeee6b5b14ae6b77d0e1115
SHA512

a3d01869e93fc55e5720b781d625099c7d09417b18e45b72b011bac5f295b0e4db12f2a66bc689d1a41f6ab3d441fb052981ca193581d75c26fb1d16ddca4c7b
SSDEEP

768:rTvbx4UaWtyQGhcoxV92VnUMYFFZlprZpKEw:rTzGU6DOoP9Osw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
274756282f634c01a926028fc51a99aa

Files

274756282f634c01a926028fc51a99aa
.exe windows:4 windows x86 arch:x86

d4d508178b033c42e4d240a490040341

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetModuleFileNameA
Sleep
WriteFile
DeleteFileA
LockResource
LoadResource
SizeofResource
FindResourceA
GetModuleHandleA
GetSystemDirectoryA
WaitForSingleObject
ExitProcess
CreateThread
TerminateProcess
OpenProcess
CreateEventA
OpenEventA
Process32Next
Process32First
CreateToolhelp32Snapshot
Thread32Next
Thread32First
GetVersionExA
GetFileSize
GetWindowsDirectoryA
CreateFileA
GetFileTime
SetFileTime
GetCurrentProcess
SetThreadPriority
CloseHandle

user32

SendMessageA
FindWindowA
GetWindow
EnumThreadWindows
GetWindowTextA
GetClassNameA
PostMessageA
wsprintfA

advapi32

RegSetValueExA
RegCreateKeyExA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
RegCloseKey

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ