4724c2f224e0f426a2b56e84540f196c | Triage

Sharing

General

Target

4724c2f224e0f426a2b56e84540f196c
Size

253KB
MD5

4724c2f224e0f426a2b56e84540f196c
SHA1

bf03bebd305d19f2fec4e75be91035c160740b5f
SHA256

7e82fa9db481fbb4e4d531bfcb1c4a021f0e90aa8ac57821d2ba6f39d7501961
SHA512

d211897bec3cc25ad41342c109c7360818f7cd3f0d733cdbe95f49dc31c357a8a632d916b9951efb9bee766db624f28946a68b210ab23a53dc1a3e44bc5c1251
SSDEEP

6144:cwClnkMmG4f6afYKk+qzbPB/xQaJk5ARlkTun3JVJh/2mSY:cw6nkj6K/EXZxQSDvLS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4724c2f224e0f426a2b56e84540f196c

Files

4724c2f224e0f426a2b56e84540f196c
.exe windows:4 windows x86 arch:x86

c55d58516ab8b94df1945dd02ca3b318

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

version

VerQueryValueA

gdi32

UnrealizeObject

comctl32

ImageList_SetIconSize

Sections

CODE
Size: 243KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE