7565e51a5f4850d3fded5d6e917dcef5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7565e51a5f4850d3fded5d6e917dcef5
Size

130KB
MD5

7565e51a5f4850d3fded5d6e917dcef5
SHA1

b9cc5ae614be80258fc81ca57aa16009557d9c10
SHA256

68cffe1188d8adbaa813473fd106be34d8a5fc97e2216db15a40baa9814110ff
SHA512

032dd7dd4e679a40704b191f96dbe08ad1b20b87154035293818675e925830eb2deb32abc7f751ee0ff88fdb3b3b3c44e501032785f028b7684993f100e67450
SSDEEP

3072:mztbG/mCFRym/OI/HjgGQi+IWWTJP7DRhkro3bBb0a:mRbG/mCfyxejgGisP7/kro39bx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7565e51a5f4850d3fded5d6e917dcef5

Files

7565e51a5f4850d3fded5d6e917dcef5
.exe windows:5 windows x86 arch:x86

f99e1897c8a3ff0b28a06a3e2dfc766e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetViewportOrgEx
PolyBezier
CreateDCW
GetStockObject
RectVisible
SaveDC
SetBitmapBits
GetClipBox
GetPaletteEntries

comctl32

ImageList_Remove
CreatePropertySheetPageW
CreateToolbarEx
DestroyPropertySheetPage

comdlg32

ReplaceTextW
GetFileTitleW
ChooseFontW

user32

GetWindowLongA
GetMessageW
GetAsyncKeyState
wsprintfA
FillRect
GetDlgItemTextA
CreateCursor
GetPropA
DestroyWindow
GetMonitorInfoW
VkKeyScanW
OffsetRect
GetScrollBarInfo

kernel32

VirtualFree
GetCompressedFileSizeW
lstrcatA
IsBadWritePtr
HeapFree
lstrlenA
FreeLibrary
CreateRemoteThread
DeleteAtom
HeapWalk
SetThreadLocale
IsDBCSLeadByteEx
EnumResourceTypesA
GetLocalTime

Exports

Exports

?srHquqJphqwnheQiAv@@YGXK@Z
?xselFshwokkhq@@YGMPAM@Z
?UltujSLclwdbYuogncmhEU@@YGJG@Z
?ctcnEVAmvRkRlebyloI@@YGMPAKPAD@Z
?nwsvxjmbCjtkx@@YGJH@Z

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ