57c4bd1255ea2fefad5786d468cb2398 | Triage

Sharing

General

Target

57c4bd1255ea2fefad5786d468cb2398
Size

838KB
MD5

57c4bd1255ea2fefad5786d468cb2398
SHA1

612b4dc305d96da9707b3e2ea88d94496686a476
SHA256

ad84676e9e4a36ec6e8b667ac8ed6d71de6d56db667f94ce8bc90d8c06ab215f
SHA512

1dfb8f29e5556f01fa8221b4968b93761545c0ce79e36ff20338c0f1205eacf1832d210d192ddf432fba40882ba68d4db86692a0f7a56fd3d36ea5bef9d396de
SSDEEP

12288:kOJ/Nq8NZ/raMSgr7qWFFuJ4tgLYrCHnAMiXUFuMwbvXPBbyHWqZmmgIao/3uo:kOJ/08NZqgrLKX3nzyNfVqcmxao/+o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
57c4bd1255ea2fefad5786d468cb2398

Files

57c4bd1255ea2fefad5786d468cb2398
.exe windows:4 windows x86 arch:x86

a9f91093b12e0bd12bde89b6170f7318

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
LocalFree
Sleep
CreateFileA
GetModuleHandleA
GetTickCount
GetCurrentDirectoryA
HeapCreate
CreateThread
UnmapViewOfFile
PulseEvent
GetCommandLineW
lstrlenA
LocalUnlock
GetComputerNameA
SetLastError
LoadLibraryExA
SetEvent
GetSystemTime
CreateThread

user32

GetScrollBarInfo
GetKeyState
DrawEdge
DrawMenuBar
DispatchMessageA
CallWindowProcA
FillRect
GetDC
GetDlgItem
IsWindow
CreateWindowExA
SetFocus
CheckRadioButton

clbcatq

CheckMemoryGates
SetupOpen
SetSetupSave
DowngradeAPL
ComPlusMigrate

inetcpl.cpl

OpenFontsDialog

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE