488d21ec8ca484281939e896de877e92 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

488d21ec8ca484281939e896de877e92
Size

39KB
MD5

488d21ec8ca484281939e896de877e92
SHA1

7e84c82775c914a92ef35aee57ea7803150bc1a6
SHA256

8beccac38b018a097f0ae39d4c5bf4460f87bbe56ab4b8f9da15ea0f26fdea81
SHA512

1d609e3ff0ad669c40c50f328b70b64cc7551a699b0d4096b7414cf27224bb9286a15bfb3676cca64dcdd7ed789a6001815630800779f0e68c9bb765b86bef20
SSDEEP

768:hkljwBqBt+I2nxXMqjJ5j3AYOSXoHRCH8u3ODyBdO:XoWB3LO+oxA07

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
488d21ec8ca484281939e896de877e92

Files

488d21ec8ca484281939e896de877e92
.exe windows:4 windows x86 arch:x86

10bcda1b00c44baca332187784b11596

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

HideCaret
GetWindow
GetWindowLongW
IsChild
IsMenu
GetMonitorInfoW
GetSysColorBrush

shell32

SheFullPathW
FreeIconList
SheGetDirW
StrChrW
StrNCmpW
WOWShellExecute
SHEmptyRecycleBinW

Sections

.text
Size: 18KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE