29791d25f78813c3a9ad9eaa6c67857f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

29791d25f78813c3a9ad9eaa6c67857f
Size

25KB
MD5

29791d25f78813c3a9ad9eaa6c67857f
SHA1

65930a20ac5b51908f9f5d91178d78c215cdd016
SHA256

6308b768bd6b4b175bed0e508382b42c99c9a91e22d80745649fe2a51b11b484
SHA512

cc1e63a9185ff4aaa16fdea5046bd8c630654b655f31e76e70c338bc135e979f7771c4656823d46a97da4d0fb1b5a95dca6c786f0d8d8fed7a5e4ebca7963b3a
SSDEEP

384:iZlVXJyzAxo7+MCDJI4B3s/hID0VJ4ffV7vbcCnW9D2A41frjKtayvBb:kfXJDFhehS0VJ2W9aA4hk5Bb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
29791d25f78813c3a9ad9eaa6c67857f

Files

29791d25f78813c3a9ad9eaa6c67857f
.exe windows:1 windows x86 arch:x86

c1747febe73b5740bf6b28ac7067b155

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateColorSpaceW
Escape
FillRgn
GdiFlush
GdiPlayJournal
CreateCompatibleBitmap
DrawEscape
CreatePen
GetBkColor

user32

CreateCaret
EndPaint
GetActiveWindow

shell32

Options_RunDLL
ExtractIconEx
DAD_SetDragImage
StrChrA
SHGetSettings
SHFileOperation
StrStrIW

Sections

.text
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE