63c576b2d0d2232a7020cffec5d72ab0 | Triage

Sharing

General

Target

63c576b2d0d2232a7020cffec5d72ab0
Size

278KB
MD5

63c576b2d0d2232a7020cffec5d72ab0
SHA1

8244042f6024f226aedf351da1f74f523b0c0842
SHA256

bbbe0f87f32aa46d3fff7d38a14e18eaafc5da59ad4d116943114a48b9fa2800
SHA512

07e8a9a655f1e89777e6978fb9fbb16411f9bc9f83b6c555ea16b0bb155f7e58c46c523a43f562ba4e40f387832a09c8152f71222c9a934c6f24950e2c6d6cef
SSDEEP

6144:8jpjHcQIdULzlD3YhvS98AlP4gL9rjRa9nglkDl:GpIWLz/JAk9rjRaNglkR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
63c576b2d0d2232a7020cffec5d72ab0

Files

63c576b2d0d2232a7020cffec5d72ab0
.exe windows:4 windows x86 arch:x86

26fa2128e849e675c3835c5487e1b319

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
VirtualAlloc
VirtualFree
OpenEventA
IsProcessorFeaturePresent
LoadLibraryA
InterlockedCompareExchange
GetThreadLocale
GetLocaleInfoA
GetACP
HeapSize
HeapDestroy
GetVersionExA
FreeLibrary
LoadLibraryW
GetProcAddress
GetCurrentThreadId
GetLastError
LocalFree
GetVersionExW
HeapFree
HeapReAlloc
HeapAlloc
FindResourceExW
FindResourceW

oleaut32

OleSavePictureFile
OleCreatePropertyFrame
SafeArrayRedim
SysReAllocStringLen
OleLoadPictureFileEx
ClearCustData
OleLoadPictureFile

msvfw32

ICInfo

Sections

.text
Size: 175KB - Virtual size: 207KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 286B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ