438c9706c522c702314ed8be48416011 | Triage

Sharing

General

Target

438c9706c522c702314ed8be48416011
Size

20KB
MD5

438c9706c522c702314ed8be48416011
SHA1

fc5b22a92861d695d5fb99cb9782728c20a0d952
SHA256

8b1ded121834830cf98042763fe3d3ef214121796daa3c7eeb04b865ebe24beb
SHA512

b8b75875d9e548499c9d2e57cf3b0c5b43f262ce116c4f020522fae5859163ba8aeaee79fc81d163b9e3b46df2a26878c73de65bc2507949a9f3cee3a44ba86c
SSDEEP

384:1vqCX6u0CvD+hA15HL+KggYrthj8hBfweQx9YyUKS:1vbKmvDBPHL+KTeh8aS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
438c9706c522c702314ed8be48416011

Files

438c9706c522c702314ed8be48416011
.exe windows:1 windows x86 arch:x86

e0c043cfd771dd7838ea6d730aee107b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GdiStartDocEMF
GetDeviceCaps
FloodFill
PathToRegion
PtInRegion
RectInRegion
PolyPatBlt
GetTextColor
GetPixelFormat

user32

ChangeMenuW
CopyImage
CallMsgFilterW
CreateMenu

shell32

RealShellExecuteExW
StrChrA
Control_RunDLLW
SHEmptyRecycleBinA
SHFileOperation
SHFileOperation
SHGetDesktopFolder

Sections

��t
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE