71625101568b5727baccb1fd82609f8e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

71625101568b5727baccb1fd82609f8e
Size

53KB
MD5

71625101568b5727baccb1fd82609f8e
SHA1

c1ab04953320c162975c8c769ba7210ffa2e9ce3
SHA256

1c067d5f2f40e69551c5529b59c5505a3131aaef740e01a3bec7f963c2fda082
SHA512

08f1f23c5375285e541c13f2b06e4c12e0d1d3b6cf6f8e905e306456d22f11191985d6096fa973d939a584fbe56913251824749da56a88d575fdd7460453d8c6
SSDEEP

1536:H/TodJ8eB+YuMsiN+Du43EElIoc1Qaz8bbOiwG1TXFLs:fTwJQrMsFf3EEVdXl1xL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71625101568b5727baccb1fd82609f8e

Files

71625101568b5727baccb1fd82609f8e
.exe windows:4 windows x86 arch:x86

b40307ea731e3f92cf69e582b70b80ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
GetStringTypeW
GetModuleFileNameA
GetFileType
GetCommandLineA
TerminateProcess
LCMapStringW
SetFilePointer
LCMapStringA
lstrcatA
GetCPInfo
GetOEMCP
SetHandleCount
lstrcpynA
lstrcpyA
CreateFileA
WriteFile
GetStringTypeA
GetStartupInfoA
GetCurrentProcess
GetVersion
GetACP
lstrcpynW
GetStdHandle

user32

LoadCursorA
DrawTextW
CopyImage
IsMenu
DialogBoxParamA
InsertMenuA
DrawIcon

comctl32

ImageList_DragEnter
CreateToolbar
CreateToolbarEx
ImageList_AddIcon
ImageList_Draw
DllGetVersion
CreateMappedBitmap

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ