5aa1c2b6830902b1f63f459616f0fe8e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5aa1c2b6830902b1f63f459616f0fe8e
Size

66KB
MD5

5aa1c2b6830902b1f63f459616f0fe8e
SHA1

4c0c84e04f75f65733b4b761d1f6b7426f791beb
SHA256

d1afd3c26af45a3bcbdf47903675072e230eff705c480ff0f4985e4f12e94f31
SHA512

04d68877fcfce393153c417b8324fe28c6464321add48b8c5db5428b9afcb6f5ef278fb187e6f6d3741f9a702a4cbb1fb1c0b503bce573ebe4bedf8c8d3032f2
SSDEEP

1536:LsxeJuUK3bYLAwF0O9d6TapA0EH8k89Iru+:LMeJuUabMAw2ODM/8+r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5aa1c2b6830902b1f63f459616f0fe8e

Files

5aa1c2b6830902b1f63f459616f0fe8e
.exe windows:4 windows x86 arch:x86

cc92cccbb26008cffb28b3d07cede1d2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsMenu
GetWindowTextLengthA
IsWindow
InsertMenuA
LoadMenuA
CreateIcon
DialogBoxParamW
GetMenu
CloseWindow
GetDlgItem
DrawIcon
LoadCursorA
GetFocus
CopyIcon
GetCursor
DrawTextW
DrawIconEx
CopyRect
GetWindowTextA
DrawTextA
DialogBoxParamA
EndDialog
GetDC

kernel32

WriteFile
GetFileType
GetCommandLineA
GetStdHandle
GetCurrentProcess
GetStringTypeW
GetOEMCP
GetVersion
GetStringTypeA
SetFilePointer
SetHandleCount
MultiByteToWideChar
GetCPInfo
lstrcpynW
lstrcpyA
LCMapStringA
GetACP
GetModuleFileNameA
lstrcatA
lstrcpynA
LCMapStringW

comctl32

CreateToolbar
CreateToolbarEx
ImageList_Copy
ImageList_Destroy
ImageList_Add
ImageList_LoadImageA
MenuHelp
DrawStatusText
CreateStatusWindowW
ImageList_AddIcon
DllGetVersion

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 16.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 35B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ