644f0b9a7c77441a3fac0dd44fd909d7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

644f0b9a7c77441a3fac0dd44fd909d7
Size

261KB
MD5

644f0b9a7c77441a3fac0dd44fd909d7
SHA1

6c9f40a22c20506c982dfb788b944bf8c83db62f
SHA256

8aefe91e10c5732bec6b444c762d357bd681dd2432b084485efe0c5890213e2f
SHA512

156a9eea750fec4f332918b877838cb81d284108ab3f8d487fab4f7dccc55629a71078d782a0073b8e09fba42d81a291ddf105c91a378625d9685eec0f49f60a
SSDEEP

3072:YE4Sb9pK6tDVZE/G0rt+kVsdaP5Rm57vNLGRU26TPcBy1H8lm89VDhsHG2:YE4S91ZuG0xadiONf22PcByd8l1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
644f0b9a7c77441a3fac0dd44fd909d7

Files

644f0b9a7c77441a3fac0dd44fd909d7
.exe windows:4 windows x86 arch:x86

6e1b292fc2694ec6d20e62f977f208b7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControls

gdi32

EndDoc
SetBrushOrgEx
OffsetViewportOrgEx
LineTo
GetDCOrgEx
SetBkMode
GetDIBColorTable
GetStockObject
ExcludeClipRect
RestoreDC
SelectPalette
SetMapMode
SetBkColor
SetTextColor
UnrealizeObject

user32

GetDesktopWindow
GetMessagePos
GetInputState
CharNextA

kernel32

GetACP
GetModuleHandleA
GetVersion
GetThreadLocale
GetCommandLineA
VirtualAlloc
GetConsoleOutputCP
GetLastError
GetCommandLineW
IsDebuggerPresent
GlobalFindAtomA
SetCurrentDirectoryA
GetProcessHeap
lstrcmpiW
GetCurrentProcess
lstrcmpiA
GetDriveTypeA
CopyFileA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 176KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ