40c57921df23c57bbc8862d8d803a60e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

40c57921df23c57bbc8862d8d803a60e
Size

393KB
MD5

40c57921df23c57bbc8862d8d803a60e
SHA1

4ce7f7eb9b0496d2711086d57688943c366f49b0
SHA256

bce58facd0563ad905c4f103b1b67eb68b25bc50df8c74cf40ca733252615520
SHA512

948b9a4817540ddfcffa96afd8c8e5b854b36cf7913590c0860f520b65c505575c69d805791abf5b1bb6354fa848e3d753f7705822d6286eec4dae76dbe17ca6
SSDEEP

6144:DGpbUeNULfjGQXr8sQwJ8RdCCKoryzWz0cSxhIC/aulYcJeNsrFS/Zt3Zu74GS6L:q9vULyjQorymC/aWYuosit3ZaS6zv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40c57921df23c57bbc8862d8d803a60e

Files

40c57921df23c57bbc8862d8d803a60e
.exe windows:4 windows x86 arch:x86

783dc598f320250ffadcebf96777614b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
TlsGetValue
WaitForMultipleObjects
FreeEnvironmentStringsA
GlobalUnlock
FindAtomA
LocalFree
GetLastError
GetModuleHandleA
CloseHandle
GetACP
LocalLock
HeapCreate
GetConsoleAliasW
GetConsoleCP
GetCalendarInfoA
Sleep
LoadLibraryExA
CreateFileA
CreateFileMappingA

user32

CheckRadioButton
CallWindowProcA
DispatchMessageA
CopyRect
GetDlgItem
IsWindow
DrawTextA
DrawEdge
GetDC
FillRect
GetIconInfo
SetFocus
DefWindowProcW
MessageBoxA

setupapi

CMP_Report_LogOn
CM_Add_Range
CM_Add_IDA
SetupCloseLog
SetupCloseInfFile

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ