4b10e0d68c6f7d351488bdbb30ac0355 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4b10e0d68c6f7d351488bdbb30ac0355
Size

142KB
MD5

4b10e0d68c6f7d351488bdbb30ac0355
SHA1

dac7e505926be0034158b71793b25d767453f115
SHA256

fcab1fe07078918c53ee424d9f0ec198331302d5824de8494694b032e19dcb32
SHA512

6aac3b699be3b17af680af7767dbf4590740f90434e6d3ffddcb30eb34565d1961b30cb89140fac7071d4362cb74d94be47d9f95eb3ab80ac23c908ff625a037
SSDEEP

3072:3ztRqWiaQfVUVIdeBPAphggjcyEO7ymgZwzcXdG7LE:5IWh6deVA8gK7ZC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4b10e0d68c6f7d351488bdbb30ac0355

Files

4b10e0d68c6f7d351488bdbb30ac0355
.exe windows:4 windows x86 arch:x86

f7c4ff76b7b04d936a55e49fa503b688

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA

user32

MapWindowPoints
ValidateRgn

gdi32

GetNearestPaletteIndex
SetDIBColorTable
ScaleWindowExtEx
RoundRect
RemoveFontResourceW
PolyTextOutA
PolyBezierTo
PathToRegion
PaintRgn
SetTextCharacterExtra
SetRectRgn
SetPolyFillMode
BitBlt
CombineTransform
CreateRoundRectRgn
DrawEscape
EnableEUDC
EudcLoadLinkW
ExcludeClipRect
FlattenPath
GetBitmapBits
GetDCPenColor
GetFontResourceInfoW
GetKerningPairsA
GetMetaRgn
MoveToEx
GetROP2
GetStockObject
SetPixel

netapi32

NetMessageNameGetInfo
NetRemoteComputerSupports
NetUserChangePassword
DsGetDcOpenA
I_BrowserDebugTrace
I_BrowserResetStatistics
NetShareAdd

oleacc

CreateStdAccessibleObject

Sections

.text
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ