748d984854acafaa8d2dbd400f97cc5f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

748d984854acafaa8d2dbd400f97cc5f
Size

299KB
MD5

748d984854acafaa8d2dbd400f97cc5f
SHA1

80ab8d3eb222b79886c8f4977677aafd697da0e2
SHA256

6b31a100454688f3462887c85d1dfb8e8c995d5245a80d312b6c8e4e597b878f
SHA512

0febc02cf6fe2441aa688f4b9d54a106e3487198d6bbad9dcf08dd23c8d2b25480a08f1a930b959aaf44889710951140cee29693cd3e05d026cc9713920be452
SSDEEP

6144:wfHKxMfk26/Llb+iMo9K9rYfMjlxC3qDASol93/yEdzuwFHb:wvtn6jlPK9rYfMjzC3qQlV6+X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
748d984854acafaa8d2dbd400f97cc5f

Files

748d984854acafaa8d2dbd400f97cc5f
.exe windows:4 windows x86 arch:x86

e59c92f07f48043041d001060582b6ea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
LocalUnlock
UnmapViewOfFile
LoadLibraryExA
CreateThread
GetComputerNameA
CreateFileA
GetCommandLineW
PulseEvent
GetSystemTime
SetLastError
CloseHandle
HeapCreate
LocalFree
GetCurrentDirectoryA
lstrlenA
CreateThread
SetEvent
GetModuleHandleA
Sleep

user32

FillRect
DrawMenuBar
CreateWindowExA
GetDC
SetFocus
GetKeyState
DrawEdge
IsWindow
DispatchMessageA
GetDlgItem
GetScrollBarInfo
CheckRadioButton
CallWindowProcA

clbcatq

CheckMemoryGates
ComPlusMigrate
SetSetupSave
DowngradeAPL
SetupOpen

inetcpl.cpl

OpenFontsDialog

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 628KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ