59e2dbf5a713b83821506627764c82d9 | Triage

Sharing

General

Target

59e2dbf5a713b83821506627764c82d9
Size

16KB
MD5

59e2dbf5a713b83821506627764c82d9
SHA1

8aec82305676ecffb20d76480b0ca9fda8c67c4d
SHA256

034852f14b4817aca8d71964caf581f612667230bc32bfbc429359d7ff76bc92
SHA512

c24a153b8d9c1e21c2d2e1c94ece47f1a0c1fb5bd4d3abd75c662dee86938a49fe2d8003580b119f9a854358752fe92360e92446ce4f9338d7f55d598d21dd3f
SSDEEP

192:CGfyD2qLWaOAe2m/LpfIvvDAm2VJ573Lad3+5lCf2/HBAS26JLDIYCOZ:JyL0yvvvDAmy/43+5g2/nLDJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
59e2dbf5a713b83821506627764c82d9

Files

59e2dbf5a713b83821506627764c82d9
.exe windows:1 windows x86 arch:x86

2667e22a4669ffb6e59edb0e759113d9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateDialogParamW
DdeClientTransaction
DdeInitializeW
DdeUninitialize
GetClassLongW

gdi32

CreatePen
EnumICMProfilesW
Chord
DPtoLP
ExcludeClipRect
BitBlt
Arc

shell32

SHQueryRecycleBinW
ExtractIconW
CheckEscapesW
SHLoadInProc
SHFileOperationW
SheFullPathW

kernel32

GetModuleHandleW
GetThreadLocale
GetStringTypeW
IsBadCodePtr
IsBadReadPtr
LocalHandle

Sections

��t
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 16KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE