65b9165cb28da26dcc91756e8c4ab598 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

65b9165cb28da26dcc91756e8c4ab598
Size

53KB
MD5

65b9165cb28da26dcc91756e8c4ab598
SHA1

5de8da6e9c8b398c2a0b25776411812d99147c32
SHA256

7e81782c6b38c752fa51d7fa3734935352650486a9e1fa626948bf045f2d938e
SHA512

22dfe5f070a979bc27027f490b58c3c8ad5185afa26619a67586458dd7b5a9cc3f045cc919304359754e5bc0bcc8aa91aca72256d069443e56780f2692359a75
SSDEEP

1536:C/cAmqd94R/03sDUbzR0dTSPm8VNTwWErW8g:QPKR2sDSzQOPFTwtrZg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
65b9165cb28da26dcc91756e8c4ab598

Files

65b9165cb28da26dcc91756e8c4ab598
.exe windows:5 windows x86 arch:x86

d3fed1a4e2340b6e8d344b9d50ae4c94

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CryptCreateHash

kernel32

GetModuleFileNameA

shlwapi

PathCombineW
PathFileExistsW
PathFindFileNameW
PathRemoveFileSpecW
StrCmpNIW
StrStrW
wnsprintfW
wvnsprintfA

user32

CloseWindowStation
DrawIcon
EndDialog
ExitWindowsEx
GetCursorPos
GetDlgItemTextA
GetForegroundWindow
GetIconInfo
GetWindowTextA
MsgWaitForMultipleObjects
OpenWindowStationA

Sections

.gnuxuj
Size: 43KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tqtkr
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fwf
Size: 6KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ