5510ca04908eb2936a0c5adfa4be2dc3 | Triage

Sharing

General

Target

5510ca04908eb2936a0c5adfa4be2dc3
Size

53KB
MD5

5510ca04908eb2936a0c5adfa4be2dc3
SHA1

bdf38775de1a1688b263c06d90623a00a388affb
SHA256

ecf336470333f976ecb38f31f28af401b94589d816ee27d10a028a6c36c0cb86
SHA512

e3b929bf8de9494e162fcf66ca2a2a15aff55370056a30a63da683757294de615a71ef153014c38a9eae85f2d30bbb1d570a8755cec4f91a9e7cec7a97866b52
SSDEEP

1536:P57caXaF3mMtz85m2DSeePOyyezqabAaqzJ+4okbo:BaFV6ReLA/E4okbo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5510ca04908eb2936a0c5adfa4be2dc3

Files

5510ca04908eb2936a0c5adfa4be2dc3
.exe windows:4 windows x86 arch:x86

557856d772c6e129bd05b21792a51749

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CallNamedPipeW
ConvertThreadToFiber
ExitProcess
GetBinaryTypeW
GetConsoleScreenBufferInfo
GetMailslotInfo
HeapFree
LocalCompact
MapViewOfFileEx
PulseEvent
RemoveDirectoryA
SetConsoleTitleW
SetDefaultCommConfigA
SetThreadAffinityMask

advapi32

BuildExplicitAccessWithNameA
BuildSecurityDescriptorW
CloseServiceHandle
ConvertAccessToSecurityDescriptorW
GetAccessPermissionsForObjectA
InitiateSystemShutdownA
LookupAccountNameW
RegEnumValueW
RegGetKeySecurity

shell32

DragFinish
ExtractAssociatedIconExA
ExtractIconA
ExtractIconExA
InternalExtractIconListA
OpenAs_RunDLL
PrintersGetCommand_RunDLLA
SHFileOperationW

gdi32

BitBlt
CheckColorsInGamut
CopyEnhMetaFileA
EnumFontsA
ExtCreateRegion
GetCharWidth32A
GetCharWidthFloatA
GetColorSpace
GetObjectA
ScaleViewportExtEx
SetBrushOrgEx
SetWorldTransform
TextOutA

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 50KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE