87fd499c7a545e261a98a12cd39a3cc7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

87fd499c7a545e261a98a12cd39a3cc7
Size

20KB
MD5

87fd499c7a545e261a98a12cd39a3cc7
SHA1

61d23558c8ceb193508c8a174baf94ad627b291b
SHA256

e6093b2f86b11e9420f8eae6e9d5b56fb37c8c1608c9717becb3d6514f988cc9
SHA512

63d2b0af13e0a751f8f6598b0e11553080cf6e1805b250750e34bf3f392a3919d894741abbef3ed843b1a16349a6cad94dc6914e8d471c43b756b09fb80cfd86
SSDEEP

384:/o+5clxktj7/bsnEUfUB/CuMo94/OGgEiAcMVQKOKrBQBkos:D5crktqg/oo94gaGKrBQBD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
87fd499c7a545e261a98a12cd39a3cc7

Files

87fd499c7a545e261a98a12cd39a3cc7
.dll windows:4 windows x86 arch:x86

9913506a7a0ad19f8d947912094a648f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetFileAttributesA
lstrcatA
MultiByteToWideChar
GetProcAddress
GlobalFree
GetModuleHandleA
CloseHandle
lstrcpyA
CreateEventA
GlobalAlloc
lstrcpynA
RtlUnwind
SetFilePointer
lstrcmpA
CreateFileA

user32

GetWindowRect
GetFocus
wsprintfA
GetClientRect
SendMessageA
RegisterWindowMessageA
SetWindowLongA
MessageBoxA
GetWindowLongA
CreateWindowExA
GetDlgItem
ShowWindow
CreateWindowExW
IsWindowVisible
SetWindowTextA
EnableWindow
CallWindowProcA
SetDlgItemTextA
DestroyWindow

advapi32

RegDeleteKeyA
RegUnLoadKeyA
RegLoadKeyA
RegCloseKey
RegQueryValueExA

wininet

InternetConnectA

Exports

Exports

cool
feed
plem

Sections

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ