59410ba9d754ff41861df421b8121418 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

59410ba9d754ff41861df421b8121418
Size

177KB
MD5

59410ba9d754ff41861df421b8121418
SHA1

a16a0cbe32a54c0403b8aaca831e30c6d0dcf46d
SHA256

e1aa505b837938e95c94bd9db59109a7a9e8b1a25a31a3d866d7ce8b27680f30
SHA512

84d8e8c638cba67239fee90304903412e3a8e5cd9d01b9a7668ff4d40c096710b77976119e810de7e952a7411d1bb85fc040302ccf165aa4cc0667dfa4d67b0b
SSDEEP

3072:NgDo/CuC6rrhtorBIlfD0UB+H9Gk6OSXPSN/O/I8CuP7xIlBjgIa6Inhjy4Va/P:ODo/CZk9torlrH9GktN1tuAgIavhjySi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
59410ba9d754ff41861df421b8121418

Files

59410ba9d754ff41861df421b8121418
.exe windows:5 windows x86 arch:x86

a40496faa1a22b9bd76fb2a4e66c6478

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

ChrCmpIW
PathGetArgsA

user32

PostMessageA
GetCaretBlinkTime
CreateCursor
GetForegroundWindow
GetActiveWindow
IsIconic
GetDC
GetKBCodePage
GetAsyncKeyState
CheckMenuRadioItem
SetFocus
CopyImage

kernel32

lstrcpynW
GetTickCount
WaitForSingleObject
IsBadCodePtr
DuplicateHandle
OpenEventW
ConvertDefaultLocale

gdi32

GetLayout
GetSystemPaletteUse
CreateHatchBrush
CreateDIBSection
GetDeviceCaps

msvcrt

gets
toupper
system
towupper

Exports

Exports

?shiumtQmEVbvsaxjUTe@@YGPAEPAD@Z

Sections

.itext
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 151KB - Virtual size: 231KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CODE
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ