4579317c5b4d2c3d02cd8cca1bbe8b7d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4579317c5b4d2c3d02cd8cca1bbe8b7d
Size

307KB
MD5

4579317c5b4d2c3d02cd8cca1bbe8b7d
SHA1

5a70d2a3db20ac6cfe33915f457a082fc0849246
SHA256

43a6095ad541417be4dba69fd6d3e8a64af168f48a0d3c4fc52e79b45e7657dc
SHA512

724fc13ecb90eb9c998c905d777e666d3ee0b6f037c959858b9b54123c797580517f192881a89b74a5b5f4a21f23672f3978a0a18dbaa67b538eb6c8168c7d53
SSDEEP

6144:mZQ8h6BrwuXrFtCyZtA9UdAa2DyZKGa1u8rc61pOkKKc6tepNP5+L/D:2ElDbEUdwyZ+brc61wkKfOQO/D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4579317c5b4d2c3d02cd8cca1bbe8b7d

Files

4579317c5b4d2c3d02cd8cca1bbe8b7d
.exe windows:4 windows x86 arch:x86

00f93654e90883d157fdeea19663327b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
GetTickCount
GetModuleHandleA
InitializeCriticalSection
ExitProcess
ResetEvent
GetStartupInfoW
FindClose
GetProfileIntW
GetEnvironmentVariableA
DeleteFileA
HeapDestroy
CreateMutexW
CloseHandle
HeapCreate
GetFileSize
SuspendThread
GetTickCount
SetLastError
WaitForSingleObject
Sleep
GetCalendarInfoA
CreateFileA
GetCurrentDirectoryA
ReleaseMutex

user32

GetClassInfoA
GetWindowLongA
GetCursorPos
MessageBoxA
PeekMessageA
GetDC
DispatchMessageW
GetDC
CallWindowProcW
DispatchMessageW
GetDC
GetSysColor
GetDC

dmintf

DllGetClassObject
DllGetClassObject
DllGetClassObject
DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 298KB - Virtual size: 298KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ