459b61e2f3f9e36b26bff6460a066652 | Triage

Sharing

General

Target

459b61e2f3f9e36b26bff6460a066652
Size

25KB
MD5

459b61e2f3f9e36b26bff6460a066652
SHA1

5bfe9679e9f32787099b42e7998875debde1795c
SHA256

c5ccdeaa20f1729a68d46f2b12e3cc7e7d624312ba17f8ec4cf4923d7c8e2dcb
SHA512

4c1df605375ef1cee3169483f0f2b8fdc7c6ab0377d18a306e4866ba6da1739cd5f8d56227b9add2ed82c5a9dc4f1c0b62e8696b63d43fd9f262f8494ef4bf18
SSDEEP

384:CzM1B6fIXJvfdMVQTn7HJblAaOg/FL5mao/ddUAQITGkr+Yal3ily:Ce3JvaUJbGajLcddUwTGk6YalT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
459b61e2f3f9e36b26bff6460a066652

Files

459b61e2f3f9e36b26bff6460a066652
.exe windows:1 windows x86 arch:x86

1e47a0f5154825ad92bde7492c0e43ff

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHFileOperation
StrChrW
Control_RunDLLW
SHEmptyRecycleBinA
SHFileOperation
SHGetDesktopFolder
RealShellExecuteExW

user32

CopyImage
ChangeMenuW
CallMsgFilterW
CreateMenu

gdi32

GdiStartDocEMF
GetDeviceCaps
FloodFill
PathToRegion
PtInRegion
RectInRegion
PolyPatBlt
GetTextColor
GetPixelFormat

Sections

.text
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE