529b664b1abc7069691e47f6235fd97f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

529b664b1abc7069691e47f6235fd97f
Size

165KB
MD5

529b664b1abc7069691e47f6235fd97f
SHA1

187856105997446d0572a0cce7762a62e6f34e1b
SHA256

78c04f956491594178e5ab5e73f81e6d4f02ea23ac68dad0bc7ef448180ae336
SHA512

bd9b5904aa05a6719605a620f0fa5881acd19265014678a67d3c9d380d1c342f58f74886d149e081403d303308d87c7bf2e355d5b1915744c6f63cffddb8e4d4
SSDEEP

3072:PkulPvC6yIeCb9E4QcFrVfyIbMC/Nq+9tJptwuGAab2A8zdVLL+YPMLO:jHC8bb9m0R6Ibf/NqU13aSA8bqYPM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
529b664b1abc7069691e47f6235fd97f

Files

529b664b1abc7069691e47f6235fd97f
.exe windows:4 windows x86 arch:x86

b0f78a841e8f159513e4102515160638

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDIBColorTable
SelectPalette
GetBkMode
SetBkColor

kernel32

ExitProcess
GetProcessHeap
LoadLibraryA
GetThreadLocale
GetModuleHandleA
GetModuleFileNameA
VirtualAllocEx
GetProcAddress
GetStartupInfoA

shell32

Shell_NotifyIconA
SHGetFolderPathA

user32

GetSubMenu
GetTopWindow
GetMenu
GetScrollRange
GetSysColor
LoadBitmapA

Exports

Exports

_sxQSPjG
F7dUkU8v08iWM
_BQLoY2Q3m@12
_Fe4sOHHq@12
aS9r9FPcEc2O
4N0tBJ@16
_Sxquw4ZOc6K

Sections

CODE
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.itdata
Size: 512B - Virtual size: 235B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ