5a1327cd8dfed950e83933d013283cad | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5a1327cd8dfed950e83933d013283cad
Size

190KB
MD5

5a1327cd8dfed950e83933d013283cad
SHA1

78e4fc50c5414780ee39147566091a205b689549
SHA256

865f4bdd9252ca58de4932b8b191a8b3846bac5552736752d90f5bc48e5a2934
SHA512

b201dee9f6aad643dbee20d46c64c062d6d31ede4f9b9cbe9e86ab08e3d4e36c655ac23ff898a8db6c9c6be2ce6c024c319bd2238a1910959e1faef425f75d30
SSDEEP

3072:d1xcl3bHpQrWfvSaexptuI/vTLgoGHzNskK0jU6Fe05pa1KUFz0x5p57bawjsfMK:xclrHpQrAEtxXTkoGTqkxjcapEMZ57bE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5a1327cd8dfed950e83933d013283cad

Files

5a1327cd8dfed950e83933d013283cad
.exe windows:4 windows x86 arch:x86

d55d20e977358e7427f1af210c8efe0d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree

user32

HideCaret
SetDeskWallpaper
OpenDesktopA
IsHungAppWindow
UnregisterHotKey
GetOpenClipboardWindow
CreateAcceleratorTableA
GetCursor
ChangeDisplaySettingsA
PostQuitMessage

gdi32

GdiDeleteSpoolFileHandle
DeleteObject
SelectFontLocal
SelectClipRgn
CreateDIBPatternBrush
EngMultiByteToWideChar
AddFontResourceExA
EngBitBlt
GdiEntry7
TextOutW
EngComputeGlyphSet

Sections

CODE
Size: 9KB - Virtual size: 811KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 177KB - Virtual size: 178KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pack32
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE