675d97e5cdd3b7e07c7945fa5398e599 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

675d97e5cdd3b7e07c7945fa5398e599
Size

156KB
MD5

675d97e5cdd3b7e07c7945fa5398e599
SHA1

624521c7d3af7eb9cd43cc61be33b574b66f17fb
SHA256

b7aa74fa97af78e08acb862c22a2ad81e8a0b79b07d1e7d5626f80fa5d193e01
SHA512

caa77ca961818efd7707a00810f03656f594453ad7d0cb0c78a048721c5f7373ed9315cb4e28378bcaf10c1cb21df90b801558c2cc214e403ff91e83c8d7e0de
SSDEEP

3072:c/+dNCGJAGYEIgoGg4UPr6PLH8gGVoQvjYMnV:c/yNCGJdE4Uj6PLQhvjYMnV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
675d97e5cdd3b7e07c7945fa5398e599

Files

675d97e5cdd3b7e07c7945fa5398e599
.exe windows:4 windows x86 arch:x86

390b9d2b116944d8d880146c089da64e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedExchangeAdd
GlobalReAlloc
SetCommConfig
GetQueuedCompletionStatus
GetEnvironmentStrings
WriteConsoleOutputCharacterA
HeapSetInformation
SetLocaleInfoA
HeapLock

user32

MsgWaitForMultipleObjectsEx
InSendMessage
BeginPaint
EnumThreadWindows
GetClassNameA
CreateAcceleratorTableA
GetScrollRange
SetKeyboardState
SetMenuDefaultItem
GetQueueStatus
CreateIconIndirect
HideCaret
GetWindowTextA
SetDebugErrorLevel

gdi32

ResetDCA
SetMapMode
GetStretchBltMode
GetOutlineTextMetricsW
SetSystemPaletteUse
ColorMatchToTarget

Sections

.text
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 960B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data0
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE