51c0565ed061fc69018a936a810a734b | Triage

Sharing

General

Target

51c0565ed061fc69018a936a810a734b
Size

18KB
MD5

51c0565ed061fc69018a936a810a734b
SHA1

146298938ed07d7e68a279d75e0b6d45233cc4bf
SHA256

a67e61b44011a577f4d4e8208f4c252f15205db23a3fef03fb7243aa8f92c399
SHA512

2a4344c3d5d06700cdba2ed0aa68fe27d0962f7b939f686ce74baedbb6d1f2defc415c5721a1f0f783e6e017df49a0e9732e67eac0cdb23af63287e42bb61140
SSDEEP

384:VxkJBFsEaAylj96ZpVbPQOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOq:IJBi4yr69Lsu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
51c0565ed061fc69018a936a810a734b

Files

51c0565ed061fc69018a936a810a734b
.exe windows:4 windows x86 arch:x86

ec6731c9fe689e52aab34a3d4c92c583

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsDebuggerPresent
FreeConsole
ResumeThread
GetTapeStatus
GetCommandLineA
VirtualProtect
InterlockedExchange
GetOEMCP
GlobalMemoryStatus
HeapDestroy
PeekConsoleInputA
GetACP
GetTimeFormatA
GetCurrentProcessId
GlobalSize
HeapCreate
LoadLibraryA
GetSystemTime
WaitForSingleObject
GetModuleHandleA
GetSystemDefaultLCID

user32

GetWindow
BeginPaint
GetDC
ShowWindow
CreateIcon
GetParent
DrawTextA
FillRect
AnyPopup
ReleaseDC
GetFocus
DragDetect
GetClassNameA
SetForegroundWindow
EndPaint
wsprintfA
FrameRect
GetTitleBarInfo
GetCursorPos

atl

AtlUnadvise
AtlModuleInit
AtlGetVersion
AtlModuleTerm
AtlAdvise

msutb

GetPopupTipbar

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ