59d67d15947c1a3aa74be72acae28f06 | Triage

Sharing

General

Target

59d67d15947c1a3aa74be72acae28f06
Size

91KB
MD5

59d67d15947c1a3aa74be72acae28f06
SHA1

485f49d4678297e13c45e5db50a838f25395d016
SHA256

afeb8c143f41db59cce375f24e5a42c71039662770107de705d8581e1f4182de
SHA512

167c323cef1e4525d33caa66e70e73747a14f431e3d8124bf6a43e13d22178c733b8dcc6511e15a9a0a600a016dc218fa2112d1d77877b5642ecd0f7d25c96f9
SSDEEP

1536:PcP0dAXzppuzDGC3ItBgM6112sHSc5tA8l6+5dqckhuOvce9jIKC2aUUn/M6Ddb:PcMdAX1kABgjHScfA83WckhuO99jIwtn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs
Checks for missing Authenticode signature.

Processes:

resource

59d67d15947c1a3aa74be72acae28f06

Files

59d67d15947c1a3aa74be72acae28f06
.exe windows:5 windows x86 arch:x86

2dbe0460e2b0f6ec1169ad2afd032f73

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndPaint
GetWindowLongA
CreatePopupMenu
SetWindowTextA
BeginPaint
LoadIconA
LoadCursorA
RegisterClassExA
CheckMenuRadioItem
DestroyMenu
EnableMenuItem
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

GetBkColor
MoveToEx
DeleteObject
GetStockObject
CreateSolidBrush
CreateHatchBrush

ole32

CreateObjrefMoniker
CreateItemMoniker
ProgIDFromCLSID
CoInitialize
OleRegGetMiscStatus
StringFromCLSID
OleIsCurrentClipboard
GetConvertStg

oleaut32

CreateErrorInfo

kernel32

GlobalFree
FreeLibrary
GetACP
LoadLibraryA
GetVersionExA
GetStartupInfoA
GetLastError
HeapAlloc
HeapCreate
GetModuleHandleA
GlobalAlloc
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetCommandLineA
InitializeCriticalSection

Sections

.text
Size: 86KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE