27475d648a22801e4b6142df974523fe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

27475d648a22801e4b6142df974523fe
Size

197KB
MD5

27475d648a22801e4b6142df974523fe
SHA1

5a353db936b6e5640a4be0d389dd30100b425830
SHA256

9a79f0b82beffc8f125071928ea8f07828fb836e3f90be4086a3b0ab74454881
SHA512

efa357d1e6903d06bf67c02c3ed985d3d7789d41bceaa1108f8d9c73469ed0839592e34fa656dd1bd25e1aca3fb1d29ece6403715a763164426efe4d1dfc93b1
SSDEEP

3072:mg3VD70vlPFnyY55KyEsmOGc7Ph7lr1ai/lIce4c5/o38C0ly0CPvMzvB:mgFERykEeNPh7lpzlIoc5HRy0CPG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27475d648a22801e4b6142df974523fe

Files

27475d648a22801e4b6142df974523fe
.exe windows:5 windows x86 arch:x86

e9d08bf5741782b10ec0ff0b6cac05e8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathIsDirectoryEmptyW

advapi32

LookupAccountNameW
CryptDecrypt
CryptHashData
CryptDestroyKey
OpenSCManagerW

gdi32

GetNearestPaletteIndex
CreateSolidBrush
Ellipse
CreateDIBSection
SetViewportOrgEx
SetWindowOrgEx
RemoveFontResourceW
DeleteObject

user32

GetDlgCtrlID
TileWindows
InvalidateRect
SetTimer
CharUpperW
EndPaint
DispatchMessageA
MapWindowPoints
GetForegroundWindow
CharPrevA
ShowScrollBar
SetScrollPos
IsCharLowerA
GetDCEx
AdjustWindowRect
RemovePropW
CharToOemBuffA

kernel32

FoldStringW
WaitForSingleObject
lstrcatW
GetDateFormatA
SetTimerQueueTimer
lstrcpynW
GlobalLock

Exports

Exports

EnumTextA@16
AddFileA@4
FreePointA@12
RemoveDeviceNew@12
ModifyVersionNew@16

Sections

.text
Size: 192KB - Virtual size: 191KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 548B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ