497037f1dbce1a616b9f8b3062a88fc4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

497037f1dbce1a616b9f8b3062a88fc4
Size

108KB
MD5

497037f1dbce1a616b9f8b3062a88fc4
SHA1

76f5faea954cebb45d32f23669aada1960a62ef3
SHA256

eb16946efe186d97372d985e3cb2e5f277d62b408cf8514f74db6e0b3aae32d3
SHA512

e8d73ec4e9ecae9746f91c9ada99c46d3d374497a477ed79cec8cba1ec86dd6aabe28f0a7c03fd0d883084e96a18b3fd6a702faeb6fb896ab669711b48fbcb28
SSDEEP

1536:i+nkyOxCrONPC4dYLUvlrlBpf0gVABKnYNig0ROO3iJENI7uufou4Z:/QxjhCvaSKY4Dguufou4Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
497037f1dbce1a616b9f8b3062a88fc4

Files

497037f1dbce1a616b9f8b3062a88fc4
.exe windows:4 windows x86 arch:x86

892a4a74c5961b4cd1827758304ac7ec

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateFontIndirectA
SetStretchBltMode
SelectObject
GetClipBox
GetTextMetricsA
RectVisible
SelectPalette
SetTextColor
GetPixel
GetObjectA
SaveDC
CreateSolidBrush
DeleteObject
CreatePalette
RestoreDC
SetMapMode
GetDeviceCaps
DeleteDC
SetTextAlign
LineTo

user32

GetSystemMetrics
GetDesktopWindow
TranslateMessage
GetDC
CharNextA
GetParent

kernel32

GetWindowsDirectoryA
lstrlenW
GetSystemTime
lstrcmpiW
GetCommandLineA
lstrcmpiA
CopyFileA
GetModuleHandleA
QueryPerformanceCounter
RemoveDirectoryA
GlobalFindAtomA
DeleteFileA
RemoveDirectoryW
FindClose
lstrcmpA
VirtualAlloc
VirtualFree

glu32

gluNurbsCallback

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ