50dd928edc224d82e2f45a537e77854c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

50dd928edc224d82e2f45a537e77854c
Size

50KB
MD5

50dd928edc224d82e2f45a537e77854c
SHA1

be0a530f1b2262815b0a3e8e0a1da32a7c79c63b
SHA256

f63ffa3dfaf02d22f2586ab720dd60952ce2635edfac690cc0bc0ed81c66bca8
SHA512

8b6ac51ea69ce4666c10f643442fe7e04148661d5aa5b826f827d0159d826af563478ac70876e5cbae73bd07ca79465b01bda009eade30fc767a7425f86c0f90
SSDEEP

768:+IBGDBnm6Z0B52ksdm7OIerLNR3G0xyu+Ik9hrqbuJGxbkC1kGtvooAKaiC8hl:wnmA0B5U8VerLNRvSp9JUk0kaBqg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
50dd928edc224d82e2f45a537e77854c

Files

50dd928edc224d82e2f45a537e77854c
.exe windows:4 windows x86 arch:x86

41634fb601eef7ce19010b462a643bce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

OleGetAutoConvert
OleSetClipboard
OleLockRunning
OleSetContainedObject
OleQueryCreateFromData
OleTranslateAccelerator
CoGetTreatAsClass
OleDuplicateData
OleLoadFromStream
OleIsRunning
CoGetMalloc
CoRegisterPSClsid
OleGetIconOfClass
CoGetInterfaceAndReleaseStream
CoUnmarshalHresult
BindMoniker
OleCreateLinkFromDataEx
CoDosDateTimeToFileTime
OleDoAutoConvert

msvcrt

atol
_wsplitpath
_snprintf
__getmainargs
__dllonexit
time
rand
bsearch
__setusermatherr
_wcslwr
wcschr
__p__commode
strcmp
_snwprintf
ftell
realloc
_chdir
_ltoa
_strcmpi

kernel32

CloseHandle
LoadResource
FormatMessageA
HeapReAlloc
CompareStringW
GetStdHandle
lstrcmpiA
ReadFile
SetErrorMode
GetFileType
WideCharToMultiByte
SetEnvironmentVariableA
SetLastError
GetEnvironmentVariableA
OutputDebugStringA
GetACP
VirtualFree
GetThreadContext
CreateFileA
LCMapStringW

Sections

.text
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE