57f86c1fb94b8d2244b25d7cfbfa09e0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

57f86c1fb94b8d2244b25d7cfbfa09e0
Size

193KB
MD5

57f86c1fb94b8d2244b25d7cfbfa09e0
SHA1

a39f9ae53a10c53d7b08aae3617ca462f04850d1
SHA256

1d08a7a4a881e3df2de9304fe343d229c5654d362308a0615733abc7b2d481d3
SHA512

7c2834763407dcc865b07fcce822a33fb02539f19b986a6fcec94290542e296fced5dc33c6d5661da865122aabdf21eed433a48870b8984e60843a792cc747dd
SSDEEP

3072:kO0+Y4/7iUG/s8I7qJ26FQF6GD8TbhLDg+nm45L/q1Hpk3jOIbuumg+Ifn7D:kf+niUesa2aQF6TTJPL8pyPGcD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
57f86c1fb94b8d2244b25d7cfbfa09e0

Files

57f86c1fb94b8d2244b25d7cfbfa09e0
.exe windows:4 windows x86 arch:x86

0c0f30fb7ada0a2c2f9eceda3cf4aab8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForMultipleObjects
SetConsoleCP
HeapCreate
CompareFileTime
LoadLibraryExA
VirtualProtect
GetConsoleCP
GetSystemDefaultLangID
GetVersion
WaitForSingleObject
GetStdHandle
GetCommandLineA
GlobalUnlock
lstrlenA
GetAtomNameA
InterlockedExchange
HeapReAlloc
GetTickCount
GetModuleHandleA
SuspendThread
CloseHandle

user32

GetCursorInfo
SetPropA
CreateMenu
FillRect
SetWindowPos
DragObject
GetKeyboardLayout
CopyImage
CreateIcon
InsertMenuA
DestroyMenu
GetKeyState
DispatchMessageA
DrawCaption
EnableScrollBar
SetScrollInfo
GetDlgItem
InvertRect
DialogBoxParamA
IsDialogMessage
FindWindowA

advapi32

RegCloseKey
RegEnumKeyA
RegEnumValueA
RegCreateKeyExA
RegQueryInfoKeyA

apphelp

ApphelpCheckExe

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 796KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ