508c6a7190147dcb9aa21e82b6ada3e1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

508c6a7190147dcb9aa21e82b6ada3e1
Size

9KB
MD5

508c6a7190147dcb9aa21e82b6ada3e1
SHA1

c2fcc110a7b610b7c2520fe48408258cdcbf4bc2
SHA256

5ec4f84c902cde04070f08c22208a8d0e058d967c4c1e421199799aa484800b8
SHA512

7a25816a6a366f32550770787c28beb2fdce014a56b12dc7d6273975b201a3072516f0b6fc5d793a23ff5632a550651e092dba3717e6c0a99e46d7ab2ce5579c
SSDEEP

192:SEtPw2Eg0mFo8SUx07/63PezuSjN95n+H8gAIlECu/Fgv:SEtJu1L/yPezX9+ctCum

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
508c6a7190147dcb9aa21e82b6ada3e1

Files

508c6a7190147dcb9aa21e82b6ada3e1
.exe windows:4 windows x86 arch:x86

818bc4f28fc0c7f8d7af3ca710041f83

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumSystemLocalesW
EnumTimeFormatsW
ExitProcess
GetSystemDefaultLangID
GetThreadContext
OpenFile
OpenWaitableTimerW
ReadFile
SetComputerNameW
SetFileTime
WideCharToMultiByte
WriteFileEx
_lclose
lstrlen

user32

CascadeWindows
CreateDialogIndirectParamW
CreateDialogParamA
DdeNameService
DestroyIcon
DlgDirSelectComboBoxExW
DrawMenuBar
GetUserObjectSecurity
GetWindowTextLengthW
SystemParametersInfoA
TileWindows
TrackPopupMenu
TranslateMessage
UnpackDDElParam

shell32

CheckEscapesA
DuplicateIcon
SHBrowseForFolder
SHGetPathFromIDList
SHGetSettings
SHGetSpecialFolderPathW
SHHelpShortcuts_RunDLLW

gdi32

CreateDIBPatternBrush
CreateDIBPatternBrushPt
CreateICW
DeleteDC
GetCharWidthW
GetKerningPairsA
GetPaletteEntries
GetRasterizerCaps
ResetDCW
SetStretchBltMode
StartPage
gdiPlaySpoolStream

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE