54348cace2fe4305667fa08a48276c84 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

54348cace2fe4305667fa08a48276c84
Size

39KB
MD5

54348cace2fe4305667fa08a48276c84
SHA1

8d1e2020cf2473ea57a2ff8bc7347d49e6cb625a
SHA256

c51703bd180818b9c7e9013d00da7754daeb1086fb05d703d5bf60d0e9df0b07
SHA512

01321005ed6871f978cee7851534b091809239ce14db9e9d18d93f79780bc1bd187b12ecae1b6de406e7ed125da620fee92cd5c3872415cb8d96fe2049430bb7
SSDEEP

768:uIpah+so4HHJ8sP8pXdJmMqsvJ9eXEso8s1Dd4fbR5GIAy5IRG4g:hpS5FHfPmNhqsvJgEs2Dd4/ARRs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
54348cace2fe4305667fa08a48276c84

Files

54348cace2fe4305667fa08a48276c84
.exe windows:2 windows x86 arch:x86

f7ef68ba4006ec1e9114492d726ed899

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomA
GetProcessHeap
IsDebuggerPresent
lstrcmpA
MulDiv
VirtualAlloc
LoadLibraryW
OpenEventW
LoadLibraryA
GetCommandLineA
ExpandEnvironmentStringsA
lstrcpynA
TlsAlloc

user32

LoadImageA
GetMenu
GetMenuItemID
wvsprintfW
OpenClipboard
SetWindowPos
GetSysColor
GetTopWindow
SetWindowLongA
EnableWindow
SetScrollPos
GetClassInfoA

gdi32

GetBkColor
GetObjectW
FillRgn
RestoreDC
GetBitmapBits

advapi32

RegDeleteKeyW
RegQueryInfoKeyW

comdlg32

PrintDlgExA
GetOpenFileNameA
PageSetupDlgA
ReplaceTextW
LoadAlterBitmap
PrintDlgExW

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ