45f6ead9aa0d509116a8d0356f462e08 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45f6ead9aa0d509116a8d0356f462e08
Size

637KB
MD5

45f6ead9aa0d509116a8d0356f462e08
SHA1

98c06bb0822973c587057b4cff528e721fc2094e
SHA256

4eb0e46d830a8e25e6befef50b873ae357adae8b541c09410fd31a33886871c0
SHA512

9029bd3cd6d8c7355cc392aec67c3cb6fba27e674afef44d5e7277ab799506baa4280b4b1925adf28c56efdb7141911fe8f9fabeca50603c0678fa2b38d3d53f
SSDEEP

12288:0UwyWFNcU2j2IK66uxQf0XCFo20551DfE2RRU/pGV44Vg69MwbO+kPzd1lHYi0m5:KFNcrj2INQf0XCypfE2fUkg6vbKd3Y+t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45f6ead9aa0d509116a8d0356f462e08

Files

45f6ead9aa0d509116a8d0356f462e08
.exe windows:4 windows x86 arch:x86

d7a74591edddd4ad0b69a23707968f90

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
VirtualProtect
HeapReAlloc
GetAtomNameA
InterlockedExchange
HeapCreate
GetStdHandle
WaitForMultipleObjects
GetCommandLineA
GlobalUnlock
GetVersion
GetConsoleCP
SuspendThread
SetConsoleCP
GetSystemDefaultLangID
GetModuleHandleA
WaitForSingleObject
LoadLibraryExA
lstrlenA
CloseHandle
GetTickCount

user32

SetScrollInfo
EnableScrollBar
InvertRect
GetKeyboardLayout
CreateMenu
InsertMenuA
CopyImage
DispatchMessageA
DragObject
GetCursorInfo
GetDlgItem
DialogBoxParamA
DrawCaption
IsDialogMessage
SetPropA
SetWindowPos
DestroyMenu
GetKeyState
CreateIcon
FillRect
FindWindowA

advapi32

RegEnumValueA
RegQueryInfoKeyA
RegCreateKeyExA
RegEnumKeyA
RegCloseKey

apphelp

ApphelpCheckExe

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ