588e51259e63291333c1600380c68b8f | Triage

Sharing

General

Target

588e51259e63291333c1600380c68b8f
Size

12KB
MD5

588e51259e63291333c1600380c68b8f
SHA1

7a7450c8c81939b6a082cd60ae2bc4eac0698994
SHA256

7005115c4e423ffd2bfd36b9b988a9fc748a4b8873256c9fde59e786cb34e1b2
SHA512

86d6c4334117fa0a4c93b793d7604c6c18c0c917ba211b4bdf36e507b1665c48c877910c329b83d1ef8e76643fd079dbf6a1a90766b6480ed650962522b2d098
SSDEEP

192:2xvi2tH9Bw53XlrX3z/MZJIfF34shrl/NYkypgq02Ih:2xvi259Bw193934shZ/xyyHlh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
588e51259e63291333c1600380c68b8f

Files

588e51259e63291333c1600380c68b8f
.exe windows:1 windows x86 arch:x86

a481099aeffbf465b4b6af8185302425

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_heapadd
_getws
_ismbbkana
_CIpow
_ismbblead

gdi32

FixBrushOrgEx
GdiGetPageCount
GetBkColor
GetClipBox
FloodFill
GetFontData

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE