64ed7a3288f2903e989f849c0bcec917 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

64ed7a3288f2903e989f849c0bcec917
Size

161KB
MD5

64ed7a3288f2903e989f849c0bcec917
SHA1

f58145ec3507c4421c542952fcc3604b9af902db
SHA256

fd844201e1a163cbcfbb0ac9105b1029c9274986feefec1b9a5509958b287dba
SHA512

3bff6408212e85eac6310829fb5937263b46e554dd5bb13309f80440fad3376a28bcb7db2424188f46faefb8be36747ef7f146eb477faf4e01f400fb4274e316
SSDEEP

3072:fCnFtdzxHy1RSfO30ToT5WUC+9Y3k5q16kt+Q35O0dvyL43bq3poRO36s3yh:0XzxHkspa5WUC+9Y05q16kwQHdeQMlKN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
64ed7a3288f2903e989f849c0bcec917

Files

64ed7a3288f2903e989f849c0bcec917
.exe windows:4 windows x86 arch:x86

41c301fdf220e9fb78ebd49299c0dc1e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
UnmapViewOfFile
LocalFree
LoadLibraryExW
CreateFileA
FreeConsole
IsBadCodePtr
SetVolumeMountPointA
HeapDestroy
GetACP
CreateMutexA
FreeEnvironmentStringsA
HeapCreate
MapViewOfFile
ExitProcess
GlobalUnlock
GetLastError
SetLastError
GetModuleHandleA
TlsGetValue

user32

GetFocus
GetDlgItem
CheckRadioButton
CopyRect
DispatchMessageA
DrawMenuBar
GetIconInfo
IsWindow
DrawEdge
FillRect
GetDC
DefWindowProcW
CallWindowProcA
MessageBoxA

uxtheme

DrawThemeText
GetThemeSysInt
GetThemeRect
DrawThemeEdge
DrawThemeIcon

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ