5b0f4e047908643829d3115429cee3d0 | Triage

Sharing

General

Target

5b0f4e047908643829d3115429cee3d0
Size

27KB
MD5

5b0f4e047908643829d3115429cee3d0
SHA1

65dbc81f42b432c20037b7d7cf8bf730fb68c72b
SHA256

2803cf1cbe59d13e266faec68b7b564bfb47e25f6f977b94082a4768758c4d8d
SHA512

a755bdfca49d444b681933e81a97f1c9bb743cc312cd8d67ad34f9d14d8f64d776512e12620a57c7a34389fd4f336b05713c8d0f5b4f6e9f4f66bbfeae7fd868
SSDEEP

384:6V0wR7UTw6AlT+WymHDwsimfyflZ91/PjfdZpaYY:g0wR7UTyiWyeholZ3zpa3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b0f4e047908643829d3115429cee3d0

Files

5b0f4e047908643829d3115429cee3d0
.exe windows:4 windows x86 arch:x86

248bd75565335939d64fe47a6d778edf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
CloseHandle
GetModuleHandleA
GetCommandLineA
GetLastError
Sleep
FreeLibrary
GetVersionExA
GlobalFree
LocalFree
CreateEventA

msvcrt

_acmdln
_except_handler3
__p__commode
_initterm
__set_app_type
__getmainargs
__CxxFrameHandler
_adjust_fdiv
wcstoul

user32

MessageBoxA
DestroyWindow
ScreenToClient
ShowWindow
LoadIconA
GetWindowRect
TranslateMessage
DispatchMessageA
BeginPaint
EndDialog
GetFocus
CreateWindowExA
DefWindowProcA
SetWindowTextA
SetFocus
EndPaint
DialogBoxParamA
GetMessageA
PostQuitMessage
GetSysColor

gdi32

DeleteObject
CreateSolidBrush
GetTextExtentPoint32A
GetTextColor
SetPixel
MoveToEx
SetBkMode
GetBkColor
ExtTextOutA
SetROP2
BitBlt
GetDeviceCaps

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ