5972e2736d4a4a603e13161f5e2a10a5 | Triage

Sharing

General

Target

5972e2736d4a4a603e13161f5e2a10a5
Size

207KB
MD5

5972e2736d4a4a603e13161f5e2a10a5
SHA1

e7d2715c898e49bbe82834284d32552ed7d77d5e
SHA256

cb62fe44fa665e59cf28d034ef9030f73cdeaf4d007d723bdf22af2b24819c25
SHA512

39942490f511574def9f97245d66a4de58f22004e431fbda3f0a7685d384859e124c10a6a715c0d0df443876f057df54be230411ea3d44f1d94813cd7e4b1543
SSDEEP

6144:0OaVIRvdKHbK8SJWHlD5mOCP9FPAcRqW9cz/n:p2LcyD5HCfAKs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5972e2736d4a4a603e13161f5e2a10a5

Files

5972e2736d4a4a603e13161f5e2a10a5
.exe windows:4 windows x86 arch:x86

48ca627e445b2978b8fd90b1b67c9b82

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateCompatibleDC
CreatePenIndirect
GetCurrentPositionEx
GetTextAlign
GetClipBox
CreatePalette
GetDCOrgEx
GetBkColor
GetBitmapBits

user32

CharLowerA
IsCharLowerA
LoadBitmapA
GetMenu
LoadStringA
LoadKeyboardLayoutA
LoadIconA

kernel32

LoadLibraryA
GetFullPathNameA
VirtualAllocEx
ExitThread
GetLastError
GetFileSize
IsBadHugeReadPtr
GetFileType

shell32

Shell_NotifyIconA
SHGetFileInfoA
SHGetFolderPathA

advapi32

RegDeleteValueA
RegQueryValueA
GetLengthSid
RegLoadKeyA

Exports

Exports

_NRiDWhrqLN
_HDX5fNhgysr@16

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 189KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ