754fdc55d7b3b616761fe0cafdefca32 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

754fdc55d7b3b616761fe0cafdefca32
Size

304KB
MD5

754fdc55d7b3b616761fe0cafdefca32
SHA1

a24366cf085512aca5b74d26354b5c9e3b5210f9
SHA256

5a446cd918fe207da6792079d51b5bd3f40ca5e1476d276f2b8c809c20c5ab6e
SHA512

74428aae268ccd01fa9910b1699b16dd3f99cf4174d0eaebfd5e41c7807ab3ba50e90e4b9e6523177bd572af27a7c22c2ee685654fb251d9d76e1f1c26e3e7ce
SSDEEP

6144:OFXyTYgDvcSvnYx7Ka+85qjfSYp4kYecEWNPPQ04bAW9CqzNwiDX:eng4ScJ+v52kYec5pPQ04FCMNwiDX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
754fdc55d7b3b616761fe0cafdefca32

Files

754fdc55d7b3b616761fe0cafdefca32
.exe windows:4 windows x86 arch:x86

a77266c8a9dd9d5726b029ada2cb7334

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
GetStdHandle
InterlockedExchange
HeapReAlloc
VirtualProtect
FindAtomA
GetConsoleCP
GetModuleHandleA
GetACP
CompareFileTime
CloseHandle
WaitForSingleObject
GetTickCount
HeapWalk
GetAtomNameA
LoadLibraryA
TlsFree
GlobalUnlock
lstrlenA
TlsGetValue
GetProfileIntA

user32

PostQuitMessage
CreateCaret
UpdateWindow
GetWindowTextA
EnableScrollBar
InflateRect
GetSubMenu
InsertMenuA
SetPropA
ShowWindow
EqualRect
TranslateMessage
GetKeyboardLayout
CopyRect
DialogBoxParamA
LoadIconA
DestroyMenu
PaintDesktop
GetMenuStringA
SetWindowPos
SubtractRect
GetMenu
GetScrollRange
ModifyMenuA
MessageBoxA
GetDlgItem
PostMessageA
DispatchMessageA

msi

MsiEnumClientsA
MsiDoActionA
MsiCloseHandle
MsiEnumProductsA
MsiGetMode

uxtheme

GetThemeBool

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 620KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ