85a0f54fbfb7283b72ab4b0d32c8d93f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

85a0f54fbfb7283b72ab4b0d32c8d93f
Size

31KB
MD5

85a0f54fbfb7283b72ab4b0d32c8d93f
SHA1

3af899e88451e6a530b2e01d8530cdfcb9b03b92
SHA256

8bda4635677e0bacfdf674b6af2e96c955077d74c109510b427a34f4eb80c3a2
SHA512

e2ea6cfae1e8b11256a9c3899dff00b1e8f6e3d934aaa8c928caa2bf74ddc3a528db3d89462705ba8ee2f3b1430424b04dd352780cdabf81e5730a139580bfba
SSDEEP

384:lJIF7XhjnyZ8aOeeM2re1tW1+M3s314A1oWwpsJta4B3YJj2NuqUl:jIR00Tya1L3sld1os/a4B3YANBUl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
85a0f54fbfb7283b72ab4b0d32c8d93f

Files

85a0f54fbfb7283b72ab4b0d32c8d93f
.exe windows:5 windows x86 arch:x86

6ae1189c00b7be5b06f3922e903caa70

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLongPathNameW
SetEndOfFile
GetProcessHandleCount
CompareStringA
VirtualAllocEx
ResetEvent
ClearCommBreak
SetWaitableTimer
GetVersionExA
GetProcessHeaps
GetCommandLineA
LocalUnlock
HeapAlloc
SetConsoleScreenBufferSize
SetVolumeLabelA
SetPriorityClass
IsBadCodePtr
OpenProcess
CancelWaitableTimer
GetDllDirectoryA
ExpandEnvironmentStringsA
GetFullPathNameA

user32

ToUnicode
EnumDisplaySettingsA
DestroyWindow
EnumChildWindows
SetPropA
IsServerSideWindow
UpdateWindow
UnhookWindowsHook
BeginDeferWindowPos
GetWindow
CharUpperBuffA
CloseClipboard
SetWindowsHookExA
GetTabbedTextExtentA
GetWindowTextA

gdi32

SetAbortProc

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ