55934c79a7e0455b2cca28737eb72f44 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

55934c79a7e0455b2cca28737eb72f44
Size

55KB
MD5

55934c79a7e0455b2cca28737eb72f44
SHA1

13a4ea5ebfed901048d5413a983e0efe3e608089
SHA256

cad52816df410bae4c5f12a58ef3d16dc2e1c56ba8ee2d53fc47c8552c9b0cbe
SHA512

16b594665cee724362a9287f5109bd3768b1b3320732f6cde830cb4eede392243533f74c30ed7fb9efb84b95e2de242375156c040fa7634ec6d0550470818006
SSDEEP

1536:io+FarBqD5Nvdsp/XpCPhTJIPOpaK35aPU396K:io+FatqD5NvdsdpkTaPOpX8qL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55934c79a7e0455b2cca28737eb72f44

Files

55934c79a7e0455b2cca28737eb72f44
.exe windows:4 windows x86 arch:x86

70faa23ae37cbe0c2e036c6904bd9b55

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumCalendarInfoA
ExitProcess
GetDriveTypeW
GetProfileSectionW
GlobalFix
InterlockedDecrement
SetCriticalSectionSpinCount
WriteConsoleInputA
_hread

advapi32

CryptHashSessionKey
CryptSetHashParam
GetCurrentHwProfileA
GetSecurityDescriptorDacl
GetSidSubAuthorityCount
InitializeSecurityDescriptor
LogonUserW
LookupPrivilegeValueW
RegEnumKeyA
SetSecurityDescriptorGroup

shell32

Control_FillCache_RunDLL
Control_RunDLLW
DllGetVersion
DragQueryFileA
FindExeDlgProc
FindExecutableA
OpenAs_RunDLL
SHBrowseForFolder
SHGetFileInfo
SHGetPathFromIDList
SHHelpShortcuts_RunDLL
SHInvokePrinterCommandW
SHLoadInProc
ShellExecuteA
ShellExecuteEx

gdi32

CreateEllipticRgnIndirect
CreateHalftonePalette
EnumFontFamiliesA
GetTextExtentPoint32W
PolyBezierTo
PolyPolygon
PolyTextOutW
Polygon
SetGraphicsMode
StretchBlt
TextOutA

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE