54a20481e004f40d81b9f11d856f9c1e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

54a20481e004f40d81b9f11d856f9c1e
Size

36KB
MD5

54a20481e004f40d81b9f11d856f9c1e
SHA1

c8fe1a7504662a3aa9864e7fc414e64deae5aff6
SHA256

3462de31eb9a41fe81e28e115ae8b95cafdb5bb81aa46d64b6879b2b1a05f4eb
SHA512

883787166cda807100bd2cff462bdb5de3473898cc07f7686c3ed3350a93c0b30b9f047b379b5643379d6c9e1747067b4c2befbf0e3ebf6f0ff6acd6233b4834
SSDEEP

768:ogIOeYCvB0qJJAB9k4trEz6zHfcaXE32szWNuZ301c/:o2erqqm/LfwGsz61c/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
54a20481e004f40d81b9f11d856f9c1e

Files

54a20481e004f40d81b9f11d856f9c1e
.exe windows:5 windows x86 arch:x86

f6ab5678556fd8861f6933cc0804d26a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CryptHashData
IsTokenUntrusted

gdi32

GetDCBrushColor
RoundRect
SetICMProfileA

kernel32

GetLastError
_hread

Sections

.text
Size: 23KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lvtndd
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 304B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ