4f51145fd4d2fcd89e103f178b22f473 | Triage

Sharing

General

Target

4f51145fd4d2fcd89e103f178b22f473
Size

275KB
MD5

4f51145fd4d2fcd89e103f178b22f473
SHA1

96a033c89a93b3d1667c2f9200c04af5fc83d51b
SHA256

4173b4b2a49b7690b9c999ff418bea4d2be39de92f7137ee133482c51cbe67d1
SHA512

d6de2f6ba5fd0107f2b1d4ecec0d072f9bbeb3c559bfb7deef78f5ce91d2ccdd72d0b83c981d9e573c3961b72feab0561bb5f24e4c83c79cb8bad1a4d4b2b585
SSDEEP

6144:Tf2RgxdPOel+yVZ0ZjF9AWMH306CB4OvsxVJqbSE1DOWhZ:TeQd2el+yP0Z3AL30RB4EsxVZE1F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4f51145fd4d2fcd89e103f178b22f473

Files

4f51145fd4d2fcd89e103f178b22f473
.exe windows:4 windows x86 arch:x86

00813f3776cb3b6af8b7319e6428fa6a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
lstrlenW
BaseInitAppcompatCacheSupport
GetModuleFileNameA
CloseHandle
GetSystemDirectoryA
lstrcpyA
CreateProcessA
IsBadReadPtr
MultiByteToWideChar
EnumResourceTypesA
FindFirstFileA
Sleep
GetProcAddress
GetModuleHandleA
GetSystemInfo
WideCharToMultiByte
GetDiskFreeSpaceA
MoveFileExA

gdi32

GetStockObject

oleacc

AccessibleChildren
CreateStdAccessibleProxyA

Sections

.text
Size: 133KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ