56b8f2af0e47786f5751b7d53abb805c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

56b8f2af0e47786f5751b7d53abb805c
Size

413KB
MD5

56b8f2af0e47786f5751b7d53abb805c
SHA1

0f6b81941e43868bbd4d7ff065f52081ec51a9b8
SHA256

99d58c4f69b37d4cc7bee41c2918e04fb9fb11c10e36f8d00f3a331760e0f7eb
SHA512

20516b9f64a595957b4fc5e58cbf0d5505693f14795de4028cd0307c1f8d3817e0ebe9a5cb65fe377aa2b2603c17564668fe08b56b48f5e8bc07a78b1650a414
SSDEEP

6144:FIGoNREtUzhIBhwrtKQeMixD10lqk3A+8sJSy91qBrXVXHMOXXNdgtCxdJS0:FmW6bcOZ3AuwiqBrFpXXg0W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
56b8f2af0e47786f5751b7d53abb805c

Files

56b8f2af0e47786f5751b7d53abb805c
.exe windows:4 windows x86 arch:x86

ed7459b9511c275d67308ccde4526bb5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GlobalLock
GetVolumePathNameA
GlobalFree
GlobalFlags
CloseHandle
CreateMailslotA
GetProfileStringA
GetTapeStatus
FindAtomA
EnumDateFormatsA
GetStdHandle
CreateJobSet
LocalHandle
EnterCriticalSection
GetModuleHandleA
GetProfileIntA
ExitProcess
GetOEMCP
GetUserDefaultLangID
GetProcessHeap

user32

GetForegroundWindow
ReleaseDC
ValidateRect
CloseWindow
GetWindow
BeginPaint
ShowWindow
GetParent
EndPaint
GetActiveWindow
GetFocus
IsIconic
GetClassNameA
DrawEdge
GetWindowTextLengthA
RegisterClassA
GetDC
GetClassInfoExA
GetWindowTextA

gdi32

GetCharWidthA
GetColorSpace
ExtCreatePen
CreateDCA
CreateDIBitmap

sxs

SxsLookupClrGuid

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 688KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ