4db150b30086784ce6ef85d9f74fa9cf | Triage

Sharing

General

Target

4db150b30086784ce6ef85d9f74fa9cf
Size

204KB
MD5

4db150b30086784ce6ef85d9f74fa9cf
SHA1

35f1aa7de4d9019dd418535b6bd42b6f71914dc7
SHA256

e200e7c280ecdc0694078fa7c67977ce925e40d9411ab69609adf2dfe98250d7
SHA512

408653f829b7e1084af14f4b5ddcb3c731dfbe5f02a6517dd3a612033a92129d7838a3f77de823bcde46857fb3a0b30f5bd6f87b17db63a367749205699f56d5
SSDEEP

6144:6RPQPE6dse4D6lVTmbNGm47lM5Z65n/y:6Vv6d234+Sn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4db150b30086784ce6ef85d9f74fa9cf

Files

4db150b30086784ce6ef85d9f74fa9cf
.exe windows:4 windows x86 arch:x86

3d2eacb587d87acc74ec9c1f03221f29

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime
timeSetEvent

ole32

OleTranslateAccelerator
CoTaskMemFree
CoCreateInstance
CoTaskMemAlloc
CoTaskMemRealloc

kernel32

GetLocaleInfoA
GetCommandLineA
BeginUpdateResourceW
GetFileType
UnhandledExceptionFilter
HeapAlloc
GetStringTypeA
GetProcessHeap
GetStringTypeW
EnumResourceTypesW
ExitThread
InterlockedIncrement
GetShortPathNameW
HeapFree
WriteConsoleW
QueryPerformanceCounter
GetVersionExA
GetFullPathNameW
GetStartupInfoA
GetStdHandle

gdiplus

GdipCloneImage

Sections

.text
Size: 123KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ