59e80afe1ce4a7e0612125a90e983055 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

59e80afe1ce4a7e0612125a90e983055
Size

329KB
MD5

59e80afe1ce4a7e0612125a90e983055
SHA1

a939daacb6e2d66adeafb5914f7277ebcf3f46d4
SHA256

e32957772b9f4915715d554496a7ee106fbd1d620b17b61db22848bdc2bc1166
SHA512

9627f55e7e544d6c91f26385f7b2694364d717fad62f34feea387cec8e54baacf3bc4b447b9b0be601f60df7858901b3527d9fedd3a06debd1c80cc53d68699f
SSDEEP

6144:P+RX7Gb7sNDtyJbfa8rAHa7UI8ajT2BcmPme6FkQ0PZuxaSNU:reRUDrA6oI8af2tue6FnsuxhC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
59e80afe1ce4a7e0612125a90e983055

Files

59e80afe1ce4a7e0612125a90e983055
.exe windows:4 windows x86 arch:x86

b1d09121f971e2aa9d8c9d701acae7e4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
VirtualProtect
GetAtomNameA
TlsFree
GetStdHandle
TlsGetValue
CloseHandle
GetProfileIntA
GlobalUnlock
FindAtomA
LoadLibraryA
GetConsoleCP
GetTickCount
GetACP
GetVersion
HeapWalk
InterlockedExchange
WaitForSingleObject
CompareFileTime
HeapReAlloc
lstrlenA

user32

UpdateWindow
GetDlgItem
SubtractRect
GetMenu
GetKeyboardLayout
DispatchMessageA
InsertMenuA
ShowWindow
GetScrollRange
SetWindowPos
DialogBoxParamA
LoadIconA
EnableScrollBar
GetWindowTextA
ModifyMenuA
TranslateMessage
CreateCaret
MessageBoxA
DestroyMenu
EqualRect
PaintDesktop
PostMessageA
SetPropA
GetMenuStringA
CopyRect
InflateRect

msi

MsiCloseHandle
MsiEnumProductsA
MsiDoActionA
MsiGetMode
MsiEnumClientsA

ws2_32

WSAAccept

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 536KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ