40c5035a06aceaccff0fe9eaca8a129e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

40c5035a06aceaccff0fe9eaca8a129e
Size

340KB
MD5

40c5035a06aceaccff0fe9eaca8a129e
SHA1

382809870ab1cd503b08bf5ebf2e585d764b1767
SHA256

47dd9056410ca50a3ae1057fe8c3174f026f1e2798f25548c5eefb7627920f51
SHA512

65de56bb9623f079ce787426a382a1c2f67a454f3bbae01fa33a9a08c5db32273989473ff23e1dff43b939934cbefa86c6892d89ebb3518abcbedf2c1653e0c0
SSDEEP

3072:jryBNa9dTgNwv5XkFcMVnwqwn12CzNEyIVJYkv2cyCmDYDENT3QTJcb+PMNAmT:j8a99cC5XkFznw8CzyyyyCA8wDQTJcS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40c5035a06aceaccff0fe9eaca8a129e

Files

40c5035a06aceaccff0fe9eaca8a129e
.exe windows:4 windows x86 arch:x86

0fabb9b8e5764c614736a6a93886132a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControls

user32

GetInputState
CharNextA
GetDesktopWindow
GetMessagePos

kernel32

IsDebuggerPresent
lstrcmpiA
GetVersion
GetACP
lstrlenA
MulDiv
GetDriveTypeA
GetCommandLineW
lstrlenW
VirtualAlloc
GetConsoleOutputCP
GetCurrentProcess
lstrcmpA
GlobalFindAtomW
GetTickCount
GlobalFindAtomA
DeleteFileA
GetThreadLocale
GetProcessHeap

gdi32

SelectPalette
GetTextMetricsA
SetTextColor
SetMapMode
EndPath
SetBkMode
GetDCOrgEx
SetColorSpace
SetViewportOrgEx
MoveToEx
BeginPath
RestoreDC
OffsetViewportOrgEx
LineTo
GetPaletteEntries
GetDIBColorTable
GetStockObject

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 176KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ