4312bc77ab7e4aef78d17a229629a794 | Triage

Sharing

General

Target

4312bc77ab7e4aef78d17a229629a794
Size

735KB
MD5

4312bc77ab7e4aef78d17a229629a794
SHA1

2d50110d16ad63303c37809e5c9e9dbaefa83c8d
SHA256

05987fb385e719b9fcc23b076a19bc81f7153b13e20d29a486dd27bbef55e5f2
SHA512

0fd631e26d6cf4db211476fa74ceb3953702b54fd2bbe068fa6f8e9c41d8eaa1bf2fb6e3f9828c77fe846a73d0f22f1d7bd64236fe949e780dc2650cdcdb4e81
SSDEEP

12288:rP6ZUh3cttCCQA6BH4SDozPfIZZafd8NaXJG9f6n/OY2:rPHMttGAAYSDoQUfd8oXJGJs/w

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4312bc77ab7e4aef78d17a229629a794

Files

4312bc77ab7e4aef78d17a229629a794
.exe windows:4 windows x86 arch:x86

8b56f075dff7f31519f16fcacd0a2de0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTime
GetModuleHandleA
GetCommandLineA
ExitProcess
VirtualAlloc
CreateThread

user32

GetWindowRect
LoadCursorA
GetSystemMetrics
RegisterClassExA
ShowWindow
TranslateMessage
UpdateWindow
GetClientRect
GetDC
ReleaseDC
GetSysColor
GetMessageA
DispatchMessageA
DefWindowProcA
CreateWindowExA
LoadIconA

gdi32

DeleteObject
LineTo
MoveToEx
SelectObject
CreatePen

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 774B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 729KB - Virtual size: 729KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ