75150743ff3f209d18734cdf46daeb35 | Triage

Sharing

General

Target

75150743ff3f209d18734cdf46daeb35
Size

107KB
MD5

75150743ff3f209d18734cdf46daeb35
SHA1

f6c8e1401cc5ccf59ec78f989f625831106afa7a
SHA256

e0f0a0ac5dc00ba90806a85cd80701fac01f32144e8ab4b27f2adfd65470cdeb
SHA512

363bac5f709d4d53c8cc493a40a2d98eec7b1736e2a7ce83b2af77ac03b8bfe5f92d882a6cc5b5d007367539982ba919c4dcbcccf0683f607ecb779f6f21df51
SSDEEP

1536:tqM3dJNs4h6NZ/Lq3mw2Q7Oc5Pm5AtLMHTHmCfyk3i6EtQoU0M5o:8qWZ/MGc5Pm5oLaGCfyWoU0M5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs
Checks for missing Authenticode signature.

Processes:

resource

75150743ff3f209d18734cdf46daeb35

Files

75150743ff3f209d18734cdf46daeb35
.exe windows:5 windows x86 arch:x86

9adb5131a326dfdb6c781b826b9e4260

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteDC
GetDeviceCaps
RectVisible
RestoreDC
SelectPalette
CreatePalette
SetTextColor
DeleteObject
CreateSolidBrush
SaveDC
SelectObject
GetClipBox
GetObjectA
GetStockObject
CreateFontIndirectA
SetTextAlign
GetTextMetricsA

kernel32

lstrcmpA
GetModuleHandleA
RemoveDirectoryW
QueryPerformanceCounter
FindClose
lstrlenW
DeleteFileA
lstrcmpiW
lstrlenA
GetSystemTime
RemoveDirectoryA
lstrcmpiA
CopyFileA
GlobalFindAtomA
GetCommandLineA
VirtualAlloc
VirtualFree

user32

GetParent
GetDesktopWindow
GetDC
CharNextA
TranslateMessage
GetSystemMetrics

glu32

gluNurbsCallback

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ