5b9409e7f345f250d8ead3eebaa380fa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b9409e7f345f250d8ead3eebaa380fa
Size

20KB
MD5

5b9409e7f345f250d8ead3eebaa380fa
SHA1

71fa09e2b834cd20bd34e61fc104dd479c432078
SHA256

bbaa5e8421c295c9a067e7c174be86e7abf57da2f712a2786e01dc7892015803
SHA512

43f39b5ddc8053f182306cc88a16762e2735f4530d6cea6b2be3abe80c1eca2d91a756d1c7c52db67511ac76b39a21619925083f0f7654721db2a904186cc741
SSDEEP

384:HFXiRXtrbadN1C9GrigQpISGy+9phqReAQ2EOwc:IRda31s3FaqYAQ2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b9409e7f345f250d8ead3eebaa380fa

Files

5b9409e7f345f250d8ead3eebaa380fa
.exe windows:1 windows x86 arch:x86

330b1a8e479dc178a783f50a882a1568

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
ChangeMenuW
CallMsgFilterW
CreateMenu

gdi32

GetDeviceCaps
FloodFill
PathToRegion
PtInRegion
GdiStartDocEMF
RectInRegion
PolyPatBlt
GetTextColor
GetPixelFormat

shell32

SHEmptyRecycleBinA
SHLoadNonloadedIconOverlayIdentifiers
SHFileOperation
Control_RunDLLW
SHFileOperation
SHGetDesktopFolder
RealShellExecuteExW

Sections

��t
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE