751ed81e96a8610b4e5b565cde769089 | Triage

Sharing

General

Target

751ed81e96a8610b4e5b565cde769089
Size

413KB
MD5

751ed81e96a8610b4e5b565cde769089
SHA1

4b98fbee5c50a8f5d4ec49b4b623f4dafbd86994
SHA256

b7380c5392e42d8d328ec2277080c55ea3b9567d921d54ad1b682285f3d95496
SHA512

ec591f6eb820403cb7198c2a056c7cd9af1a1cc886c3fd5f7dbf3a929de50762cd23e20f733cabff24595305890f7cdb9a1d064c69fea4f55aa2a8bde52d8458
SSDEEP

6144:IYYWXQ7r0pjst48BVA0gP+VdQnQCgIwe/xSqF5loDOvOYbHgG8vpCWS9cXASj8k:IvAjCvM0hdCQEptoqvO6AG8Md9cQS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs
Checks for missing Authenticode signature.

Processes:

resource

751ed81e96a8610b4e5b565cde769089

Files

751ed81e96a8610b4e5b565cde769089
.exe windows:4 windows x86 arch:x86

0cc1eedc90e9588a1047f2fa0be1d5f6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumDateFormatsA
EnterCriticalSection
GlobalFree
GetTapeStatus
LocalHandle
VirtualAlloc
GetModuleHandleA
GetVolumePathNameA
GetUserDefaultLangID
FindAtomA
CreateJobSet
GetProfileStringA
CreateMailslotA
GetOEMCP
GetProcessHeap
CloseHandle
GlobalLock
ExitProcess
GetProfileIntA
GlobalFlags
GetStdHandle

user32

RegisterClassA
GetFocus
GetClassInfoExA
GetDC
CloseWindow
ValidateRect
GetForegroundWindow
GetWindowTextLengthA
GetClassNameA
IsIconic
DrawEdge
ShowWindow
BeginPaint
GetParent
GetWindow
ReleaseDC
GetActiveWindow
GetWindowTextA
EndPaint

gdi32

GetCharWidthA
ExtCreatePen
GetColorSpace
CreateDCA
CreateDIBitmap

sxs

SxsLookupClrGuid

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 688KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ