4172afdd8a093238a4d1080a99000338 | Triage

Sharing

General

Target

4172afdd8a093238a4d1080a99000338
Size

373KB
MD5

4172afdd8a093238a4d1080a99000338
SHA1

7e80a6841c4fcfbdeeb5e1445ed10b84886402fa
SHA256

26f86b2a7dd532807905d30243c2f595699ed7fc28a493eac94301d851e36be6
SHA512

60831b4e322ecab11497b86724605bd6edb8eee9fcd0fa88f4f35c848c03c7035c26938b75592a3bb9969537b406febcc46d77bfed3dc3d6ced11ccb85d25189
SSDEEP

6144:wlpCy8A2NxfcJPZBYh2h65ceX3STIhD631DmDb5ym1d2HansKUelUM/1wCvpzoOz:EpCy5nGh2U57C8tPDl66sq2MCCvLb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4172afdd8a093238a4d1080a99000338

Files

4172afdd8a093238a4d1080a99000338
.exe windows:4 windows x86 arch:x86

07251e4d2ec4ac4f80f460efaf385bb8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCalendarInfoA
HeapCreate
GetLastError
CreateFileMappingA
GlobalUnlock
FindClose
WaitForSingleObjectEx
Sleep
GetConsoleCP
CloseHandle
GetConsoleAliasA
GetModuleHandleA
CreateFileA
LoadLibraryExA
FindAtomA
GetACP
FreeEnvironmentStringsA
LocalLock
LocalFree
TlsGetValue

user32

CallWindowProcA
DrawEdge
IsWindow
CascadeWindows
DrawTextA
CreateDialogParamA
GetIconInfo
GetMessageA
GetDC
DispatchMessageA
SetFocus
GetDlgItem
DefWindowProcA
MessageBoxA

msasn1

ASN1BEREncFlush
ASN1BERDecCheck
ASN1BERDecEoid
ASN1BERDecNull
ASN1BEREncLength

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ