542f954a1c174e33fcd7704d69f5cffd[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

542f954a1c174e33fcd7704d69f5cffd.exe
Size

352KB
MD5

542f954a1c174e33fcd7704d69f5cffd
SHA1

c405401afac96abb357127361fcc94523c3e4bb3
SHA256

356414c59bce73353121006b95c7ca0a7cb63d29a068ba14c8d4b61a7bf176fc
SHA512

2c113a84657026d3ad229c820a49e9412d439fea2d26d385a282461ea2f460bf198d4971d87f376874dc498dc9284d7a4a7b12c553a2309503fd3c61174abe1b
SSDEEP

6144:jmNQ0zANEa8Li1bWlWjkoCtfwR+RwBT4M9NdX753uSUQ1sab3nfHfs:jOQ08N5qAWgko8wR54aN7mwsSP/s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
542f954a1c174e33fcd7704d69f5cffd.exe

Files

542f954a1c174e33fcd7704d69f5cffd.exe
.exe windows:4 windows x86 arch:x86

8cb8733fc5ff9d5e2e61e7fc17dad222

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeConsole
GetStdHandle
GetLastError
OpenMutexA
GetACP
CloseHandle
GlobalLock
CreateEventA
LocalFree
GetConsoleTitleW
GlobalUnlock
OpenMutexA
LocalFlags
FindClose
IsBadReadPtr
VirtualProtectEx
lstrlenA
GetSystemTime
GetModuleHandleA
LoadLibraryExW

user32

GetMessageA
GetKeyState
EndDialog
DialogBoxParamA
IsMenu
LoadCursorA
CreateWindowExA
ClipCursor
GetDlgItemTextA
GetParent
GetMessageA
GetSubMenu
IsIconic
MessageBoxA

uxtheme

GetCurrentThemeName
EnableTheming
DrawThemeBackground
CloseThemeData
DrawThemeText

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ