5151a5499a126af1291f9c3560dc0480 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5151a5499a126af1291f9c3560dc0480
Size

110KB
MD5

5151a5499a126af1291f9c3560dc0480
SHA1

855c272cb9499386b1f7629fabf75209713f72ce
SHA256

7101b9afcea532fefd161584dd832ac6979974016efb14c68fecd9435b1b8952
SHA512

2fd3c4d2a83e6694c12c74509c4f5e29b244467a1501b64eecbd5fa5628707a20b7989282bb98d3651666018733427a9ed481586b8a5f7b1274c88b9fa14662e
SSDEEP

1536:/Sw2FR02JmNOHTpRm5cMkaUnq1fnI/iaXSlbN5o1z2Yoe4U13MUPI0dq19ftO4mD:KzuhNOzpk5cXUnIquSlbn3jxUAHK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5151a5499a126af1291f9c3560dc0480

Files

5151a5499a126af1291f9c3560dc0480
.exe windows:4 windows x86 arch:x86

b84a96ee80dfa7985301d23d04989a04

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetModuleFileNameA
GetLocalTime
VirtualAllocEx
GetLocaleInfoA
LoadLibraryA

gdi32

GetBkMode
RestoreDC
GetDIBits

shell32

Shell_NotifyIconA
SHFileOperationA
SHGetDiskFreeSpaceA
SHGetFileInfoA
SHGetSpecialFolderLocation

user32

GetTopWindow
GetScrollRange
IsMenu
GetSubMenu
LoadCursorA
GetWindowDC
GetMenu
GetSystemMenu
GetSysColorBrush
LoadBitmapA

Exports

Exports

_ZgfmR
_De3dpYMulVZ_wZ@12

Sections

CODE
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 757B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.htdata
Size: 512B - Virtual size: 161B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ