4fbeeee1e486543115e1e4d20a947f5c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4fbeeee1e486543115e1e4d20a947f5c
Size

49KB
MD5

4fbeeee1e486543115e1e4d20a947f5c
SHA1

23c93f8fef9f90117922e8492980643ea14a1e5e
SHA256

7ec22d7f1becfec88c52e51c680e033f3e858206d7afdde4ee7e9b393975f7a1
SHA512

387d92d19df7949ce726062286637f71285793a5fd9331b2716aba3f88b6431cbb5cb5026810e94d5b8f36b99e7d64e7cd8b30aad9feee98727da59ff695348f
SSDEEP

1536:hRv0mHnVDVR7B3eEFkHv+i/x3PF+EeD2qy:/vRHRVZB/FkHvTxFeP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4fbeeee1e486543115e1e4d20a947f5c

Files

4fbeeee1e486543115e1e4d20a947f5c
.exe windows:5 windows x86 arch:x86

7edb62b6b329f92467493e348f529771

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CryptGetHashParam
RegDeleteValueA
RegQueryValueExA

kernel32

Sleep

shlwapi

PathCombineW
PathFileExistsW
PathFindFileNameW
PathMatchSpecW
StrCmpNIA
StrCmpNIW
StrStrW
wvnsprintfW

user32

CharUpperW
CloseDesktop
DrawIcon
GetForegroundWindow
GetIconInfo
GetKeyboardState
GetWindowThreadProcessId
LoadCursorA
OpenDesktopA
PeekMessageA

Sections

.oherez
Size: 40KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wdkvix
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pyh
Size: 5KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ