45441620ecea8b8cc4b75706122e376f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45441620ecea8b8cc4b75706122e376f
Size

116KB
MD5

45441620ecea8b8cc4b75706122e376f
SHA1

92767bfa55dc488cb122b0f256514214d4c3462c
SHA256

dddabd63f59ca8227fcc28430809c7f7448aa15da951ac1574117f088658f786
SHA512

d537cf3cc195671599785a92c0f1cd93045c45054b7ded47e083a924e10841543f567beb19ff55449d56f7635d0ebb3eea6ccbd1412be00f1785c67a652fcdec
SSDEEP

3072:W0EhL7cvB+2PtY5MJ8GcxP12FvXrXLPFRX4HV:W9L7cJ5YMuD14LE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45441620ecea8b8cc4b75706122e376f

Files

45441620ecea8b8cc4b75706122e376f
.exe windows:4 windows x86 arch:x86

48f6ffeb0ae25535bfca79e4cf149783

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSystemMetrics
TranslateMessage
GetParent
GetDC
GetDesktopWindow
CharNextA

kernel32

lstrcmpiA
lstrlenW
QueryPerformanceCounter
DeleteFileA
GetWindowsDirectoryA
GlobalFindAtomA
GetSystemTime
CopyFileA
lstrcmpiW
GetCommandLineA
lstrcmpA
RemoveDirectoryW
RemoveDirectoryA
FindClose
GetModuleHandleA
VirtualAlloc
VirtualFree
lstrlenA

gdi32

DeleteObject
GetPixel
SetMapMode
RestoreDC
GetTextMetricsA
CreatePalette
GetDeviceCaps
LineTo
CreateFontIndirectA
CreateSolidBrush
SetTextAlign
GetObjectA
SelectPalette
RectVisible
SetTextColor
SetStretchBltMode
GetClipBox
SelectObject
DeleteDC
GetStockObject

glu32

gluNurbsCallback

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ