58cbac0e7bf30f208603e77b89b118b6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

58cbac0e7bf30f208603e77b89b118b6
Size

161KB
MD5

58cbac0e7bf30f208603e77b89b118b6
SHA1

cba7e2b48579b1da1695068b0600947e8b7f7b54
SHA256

557943bb4ddda710cc0b9b8f6a068cc5dac2cedcfd81855b8e346ef8c5079110
SHA512

f422c872924872cda2f94bbb3c522d2b6b1e90050b5dd8b6656c0bcfef89954dcc959388b2a21b30cb0ed616dcba4fb065f363adfca54976ae0720d1eed46cae
SSDEEP

3072:0YXxLg6UpbZy68izv5V24RBuaAzfBKEiKB+70NGsJIZw8u+qpv090j//kdw:vnUpU6ljuaAUA+GXJT8Jg//kdw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
58cbac0e7bf30f208603e77b89b118b6

Files

58cbac0e7bf30f208603e77b89b118b6
.exe windows:5 windows x86 arch:x86

cda18ad1570bf5d951938afa6d1f4098

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

RtlCompareMemory

user32

FindWindowA
PeekMessageW
GetWindowRect
CharNextW
SetFocus
wvsprintfA
IsWindowEnabled
ValidateRect
OffsetRect
AdjustWindowRect
GetAsyncKeyState
SetScrollPos
DrawFocusRect
WindowFromPoint
GetShellWindow
OpenIcon
CreateIconFromResource

kernel32

GetCommState
GetLastError
FindCloseChangeNotification
GetOverlappedResult
GetStartupInfoW
EnumResourceNamesA

Exports

Exports

?TemporaryArrayCre

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hvb
Size: - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.hv
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ