4713265a30b75079ba0d978b5315454e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4713265a30b75079ba0d978b5315454e
Size

747KB
MD5

4713265a30b75079ba0d978b5315454e
SHA1

e2907ced1ada48cb6a9881ec190ef759875295a9
SHA256

17fa6264f017206da94eba1e3b1dc9f94f782e06c9d15cfe9fd27e615e070e3c
SHA512

2ed647125e04b1545f20166ace22c6534016afc124fc2f8486349de50895c941b1ad40db518a022a77d7813f9cc832728aecb5ea80be5b0d3cf11933a64a8967
SSDEEP

12288:/GfrtrWha3FSyBjQ6kHp+5dIXjcdq0DvYQ0qNroQSYUJMzl7sdUzxsbJQjlkjEdm:ufdWwFlJwJ+AXjWB7jNUQSBJ4uGxEGOr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4713265a30b75079ba0d978b5315454e

Files

4713265a30b75079ba0d978b5315454e
.exe windows:4 windows x86 arch:x86

081af169be241cdf966814ac167bd95e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
DeleteFileW
CreateFileA
ClearCommBreak
ExitProcess
ReleaseMutex
ResetEvent
CreateMutexA
RemoveDirectoryA
GetFileAttributesA
WriteConsoleW
GetEnvironmentVariableW
SetEvent
CancelIo
VirtualAllocEx
GetStartupInfoW
OpenProcess
GetCommandLineW
GetModuleHandleA
GetTickCount
SetLastError

user32

GetDC
DispatchMessageW
GetDC
GetSysColor
GetCursorInfo
PeekMessageA
FillRect
GetClassInfoA
FindWindowA
DispatchMessageW
GetDC
CallWindowProcW
GetWindowLongA

mciseq

DriverProc
DriverProc
DriverProc
DriverProc

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 741KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ