78a31cd0fa6993dab34f19cf28f57ceb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

78a31cd0fa6993dab34f19cf28f57ceb
Size

27KB
MD5

78a31cd0fa6993dab34f19cf28f57ceb
SHA1

4b389e2ade6c9c13a73731aa7d908baba69ea8e8
SHA256

03b3ff614ba86eb691aed1f56c6d79a8af923ea9d3588d1b550e1d8a917b83fb
SHA512

a67d342159648798c27562297f1cc2f67f8b3c4ac68276ae40b121c2d93f2010e46128c81c118be4646961b8b08e414be6dc822a7e2de60eac3462c343a7a3ab
SSDEEP

384:mviS0/GWZ55/fodvWSQ95cqLXqY9vwzOXqs8jYHXSwu78r3Ss9PWfXrjGVBz+6Sd:jr5Bosb5cwz9vwSkYHXa7yN9PWf6F1u

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78a31cd0fa6993dab34f19cf28f57ceb

Files

78a31cd0fa6993dab34f19cf28f57ceb
.exe windows:5 windows x86 arch:x86

ea7af9face686a8d4e1100f05c045f61

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteDC
GetBkColor
SetBkMode
DeleteObject
SetROP2
CreateCompatibleDC
SaveDC
GetStockObject

user32

IsDlgButtonChecked
SetMenuItemBitmaps
GetMenuItemCount
PeekMessageA
TrackPopupMenu
GetMenuCheckMarkDimensions
GetSystemMetrics
GetWindow

ole32

CoDosDateTimeToFileTime
CoGetInterfaceAndReleaseStream
OleRegGetUserType
OleUninitialize
BindMoniker
CoFileTimeToDosDateTime
OleRegGetMiscStatus
CoDisconnectObject
OleSave

advapi32

RegCloseKey
CopySid
IsValidSid
RegOpenKeyExA
RegCreateKeyA
SetSecurityInfo
AllocateAndInitializeSid
LookupAccountSidA

msvcrt

_access
wcsncpy
_strnicmp
_beginthread
_stat
iswctype
strcmp
_splitpath
fprintf

kernel32

GetProcessAffinityMask
GetCurrentThread
MultiByteToWideChar
FileTimeToLocalFileTime
OpenProcess
HeapAlloc
CreateEventA
GlobalAlloc
HeapSize
GetLastError
QueryPerformanceCounter
lstrcmpiA
FreeEnvironmentStringsA
GlobalMemoryStatus

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ