546d66801659fdf294f2039778daebef | Triage

Sharing

Copy URL Twitter E-mail

General

Target

546d66801659fdf294f2039778daebef
Size

1.3MB
MD5

546d66801659fdf294f2039778daebef
SHA1

b434b45bdee4f76ec2b0e8a0b00a99d310a79707
SHA256

3ac3397660ba9a98169ca05d0428dd152eb82ecde417262df30a1831f5220d56
SHA512

44492ace75c2f95617b7573cbdc76e757055764face9b66994b961d096e6cffa8d542b4d8ac67cecf076870a2d6c65df51b0ad9b4dbbab58c1df4b4007ff86e0
SSDEEP

24576:Sldl5zVh/s92r8vduP6KAmbES2g74o7oE6yXr1QoHyknKpLn:SldldXPr8vdRKA4ESR8o7tv5Qgyq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
546d66801659fdf294f2039778daebef

Files

546d66801659fdf294f2039778daebef
.exe windows:5 windows x86 arch:x86

104c0fa594d7ca127cdd8f91a54049b4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

MessageBoxA

advapi32

RegCloseKey

comctl32

ImageList_Create

Sections

Size: - Virtual size: 2.1MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 557KB - Virtual size: 629KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 95KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE