45610da0720279aac319a9df6260e49f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45610da0720279aac319a9df6260e49f
Size

346KB
MD5

45610da0720279aac319a9df6260e49f
SHA1

e9cb39eab398f7cffae36fc7831ee255c22c81f9
SHA256

f1fe462d7f6584b064ef84ef31e2f8c453719f53f2b90ce5ace7159c554bb325
SHA512

2f9c05e1021c9f4a790bab555fffb5067298fa83255123692a312c1b371ec4ab3fe77e4cecfcea9cf6098e9999b211987636ef855238226560f701d62ff9f286
SSDEEP

6144:DR/9NRCHtjDZ1PCf0q//WAsPdLur788wccE8Zg219B3KkpK:J9gjv6fB//WAsPdD8wJZx9rp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45610da0720279aac319a9df6260e49f

Files

45610da0720279aac319a9df6260e49f
.exe windows:4 windows x86 arch:x86

fe5412ab1880248031ce1700906613de

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetComputerNameA
lstrcpyA
PulseEvent
HeapCreate
CreateFileW
LocalFree
GetCommandLineW
Sleep
FindClose
GetSystemTime
UnmapViewOfFile
GetTickCount
ResetEvent
GetModuleHandleA
lstrlenA
CloseHandle
CreateThread
GetCurrentDirectoryA
LoadLibraryW
GlobalUnlock

user32

CallWindowProcA
DrawEdge
DispatchMessageA
DrawMenuBar
GetDlgItem
GetKeyState
SetFocus
GetScrollBarInfo
GetDC
FillRect
IsWindow
CheckRadioButton
CreateWindowExA

cryptui

LocalEnroll
CryptUIDlgCertMgr
CryptUIDlgSelectStoreA
WizardFree
CryptUIDlgSelectCA

timedate.cpl

CPlApplet

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 580KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ