426aa6a6f4adfce4fdcfc23a9a226e37 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

426aa6a6f4adfce4fdcfc23a9a226e37
Size

58KB
MD5

426aa6a6f4adfce4fdcfc23a9a226e37
SHA1

67bfb8c47d5af8f2253f4db99ba422a03385fa19
SHA256

076e18eaa08587ef3876a3742f0301f3b3efb45697e4f263c63aae97585d3671
SHA512

51a81de52f30a3802907e40dc356ece76704ebfa18b3d8e94e32a5603051e6c6885a7ccf33838198173b4f87e7bdca06dcc38ff7e6c0c386d67b09fbf0245cd8
SSDEEP

1536:VxBG4fvWoNh5NB7c4bn2Q311JcscX4Ii:PBGSeojLB7520JVwRi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
426aa6a6f4adfce4fdcfc23a9a226e37

Files

426aa6a6f4adfce4fdcfc23a9a226e37
.exe windows:4 windows x86 arch:x86

d0d8dfe13d3c5011a11977e1dcf5f984

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
GetVersion
LCMapStringA
GetCPInfo
GetOEMCP
GetStdHandle
CreateFileA
SetFilePointer
GetCommandLineA
GetStringTypeW
lstrcpynA
SetHandleCount
GetStringTypeA
WriteFile
GetFileType
MultiByteToWideChar
GetModuleFileNameA
GetACP
TerminateProcess
lstrcpynW
LCMapStringW
GetCurrentProcess
GetStartupInfoA
lstrcatA

user32

GetCursor
GetDlgItem
CopyRect
CopyImage
InsertMenuA
GetFocus
GetWindowTextA
IsWindow

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ