782b680daa6cb483b9e3834aafc4192c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

782b680daa6cb483b9e3834aafc4192c
Size

17KB
MD5

782b680daa6cb483b9e3834aafc4192c
SHA1

f9fe52deb5df5120a39bc9d827308a4cfcb5b8c0
SHA256

3af3f2ecd2ed96eb1ea01c0c5a2aa2f1beb9ca475819812d3d7108a9d5a86936
SHA512

97d90cfef215a7d29b92ce35237329612cb3fc568219a23b92b3733f70a5c8ad94906d7d7a274f881af9aa4a5132deb37e754f92e158ea022c1444fb4005bdd3
SSDEEP

384:RRjTV+09lOsYNQY4hs8fYEdiDOLqEIvnkXHMYwI:rTx9cs5I8zdiDOLqTkXHMm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
782b680daa6cb483b9e3834aafc4192c

Files

782b680daa6cb483b9e3834aafc4192c
.exe windows:1 windows x86 arch:x86

6c33eae0176337541b4fc1ad9e438e95

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

LoadAlterBitmap
PageSetupDlgW
dwOKSubclass
ChooseFontA

kernel32

ConvertDefaultLocale
ExitProcess
CreateThread
GetCPInfoExW

Sections

.text
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE