67151d9ea72c4c724999770fe50fd8a2 | Triage

Sharing

General

Target

67151d9ea72c4c724999770fe50fd8a2
Size

279KB
MD5

67151d9ea72c4c724999770fe50fd8a2
SHA1

2c8d5fe18b109a01573a832213fc618dd97abd53
SHA256

db6c4c31aec91d55efb9174c4acf54bf7229741ead64c8e2e29c94611d91e47c
SHA512

b7413eaeff0fddadca1ec285d7fe8c2ee014502dcfb60a58d1928b38988da21de336daefe109031a7f24d7a92448c714ff165e3adf31bc08198d75ac061a738b
SSDEEP

6144:yhX0YplXTnIJQ19PRVmP3sVsmYl1Im9v4PY7ecUWJggKy2Komw2Uk6i:Y0YpusPRzsz9qPUPJgX9CUkh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
67151d9ea72c4c724999770fe50fd8a2

Files

67151d9ea72c4c724999770fe50fd8a2
.exe windows:4 windows x86 arch:x86

0ee28ec947bc842ca95ef88ed96ef640

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringA
GetDiskFreeSpaceA
AddAtomW
SetFilePointer
IsBadReadPtr
LCMapStringW
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
VirtualProtect
ReadFile
GetCPInfo
IsBadCodePtr
SetStdHandle
GetFullPathNameA
EnumResourceNamesW
GetOEMCP
GetStringTypeW
GetStringTypeA
WriteFile
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetStringTypeExW
GetFileAttributesA
GetEnvironmentStringsW
CreateFileA
FindFirstFileA
FlushFileBuffers
GetThreadLocale
MulDiv

shlwapi

SHGetInverseCMAP
PathIsFileSpecA
PathIsContentTypeA
SHCreateStreamOnFileEx
PathAppendA
PathCreateFromUrlW

rpcrt4

RpcStringFreeA

Sections

.text
Size: 142KB - Virtual size: 277KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ