450f41f2e08f4c275467a528a8abc76b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

450f41f2e08f4c275467a528a8abc76b
Size

49KB
MD5

450f41f2e08f4c275467a528a8abc76b
SHA1

1819b170d01978d1a011d9b1e2c7631db17cfe83
SHA256

c18b40b7f1b63ac1957aa97ce329b48fb871de3d40d08b4698df0cbc0106256a
SHA512

0ba51d6be5e8585f1d4a8e55fbd61c9d18ec3eb87e59228232cb541401659e70423eee7221d8f5de6dea4ca87fb0321c776100900c08efe123a327c7f3d03d55
SSDEEP

768:sH8ChLnODPZS/QbcMOYEXeesBTveV/+wE0ujipox8I8lZ/DvNnC:i/1OA/2OYu7V/8X9IDvNnC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
450f41f2e08f4c275467a528a8abc76b

Files

450f41f2e08f4c275467a528a8abc76b
.exe windows:3 windows x86 arch:x86

43ece56695e4f18517bef8bfcc12da24

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventA
CreateThread
FreeLibrary
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetModuleHandleA
GetProcessHeap
GetSystemTimeAsFileTime
GetTickCount
HeapDestroy
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
QueryPerformanceCounter
VirtualAlloc

user32

BeginPaint
CharNextA
CreateWindowExA
DestroyWindow
EndPaint
GetCapture
GetKeyboardType
GetSystemMetrics
IsChild
IsIconic
LoadStringA
SendDlgItemMessageA
SendMessageA
SetDlgItemTextA
SetFocus
SetWindowLongA
SetWindowTextA
wsprintfA

Sections

CODE
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BSS
Size: - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 998B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ