4f323bc10f4afde3097a6051c9972f4a | Triage

Sharing

General

Target

4f323bc10f4afde3097a6051c9972f4a
Size

708KB
MD5

4f323bc10f4afde3097a6051c9972f4a
SHA1

82381f0e69ff3e6b24695b3b91660504546e31f8
SHA256

969fa67c88c6cac7e8bbe732d0ada67fb34d0c76da3c383fbe0ef7ff4236af03
SHA512

a39d44c6914dac8ee72cdce2b1d03885037f9f1c953d3a752f794617d4b9b15c940b55b4bd7482bea737ef7504b6497ca4e534039047ae546fce7a896d04c3cf
SSDEEP

12288:ndYhYjS1d+zAUMSVXsrnOp8FNTWKU4oNowEY0dJBVgNvk4njh6SPZgR2JJ0PG4Qe:n2t44SVXAmgRU4igdfeN84njVgRNP1P1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4f323bc10f4afde3097a6051c9972f4a

Files

4f323bc10f4afde3097a6051c9972f4a
.exe windows:4 windows x86 arch:x86

5f2df7257758bf2707e2911007001ebd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ResetEvent
CreateThread
LoadLibraryA
FindResourceA
GetModuleHandleA
LocalAlloc
LocalFree
GetCommandLineW
GlobalAlloc
GlobalFree
SetEvent
CreateProcessA
ExitProcess
GetTickCount

user32

GetClientRect
GetWindowRect
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
ShowWindow
UpdateWindow
CreateWindowExA
LoadBitmapA
SendMessageA
DestroyWindow

Sections

.text
Size: 48KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 356KB - Virtual size: 628KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ