87b1cb6409a5f2a5a4a12d83bddc8a7a | Triage

Sharing

General

Target

87b1cb6409a5f2a5a4a12d83bddc8a7a
Size

110KB
MD5

87b1cb6409a5f2a5a4a12d83bddc8a7a
SHA1

47006f384fe7fa055228941f70597cc96352a34f
SHA256

dbf2aab44098eea576b8eb7cd198d89e38d1a308df46ff8ed9a29e6d175413a2
SHA512

bed054ce1bd2f7a8e1625e8a79bcfeaad6dd815602903e43d1136dc4bbdcb9935dd1b120b48f27207f71b41b15df0f33792655546e5dd5f76b76534530b9c3b4
SSDEEP

3072:35gmd5h7S0wDeymBr1gILPmPBUcYJGxZi5:Jg4aeym7gWeUFo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
87b1cb6409a5f2a5a4a12d83bddc8a7a

Files

87b1cb6409a5f2a5a4a12d83bddc8a7a
.exe windows:4 windows x86 arch:x86

19cc717f8eea20b6da1397c50b072ae4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTime
GetWindowsDirectoryA
lstrcmpiW
GlobalFindAtomA
lstrcmpiA
lstrcmpA
DeleteFileA
GetCommandLineA
RemoveDirectoryA
CopyFileA
lstrlenW
GetModuleHandleA
RemoveDirectoryW
QueryPerformanceCounter
FindClose
lstrlenA
VirtualAlloc
VirtualFree

user32

GetDC
GetParent
CharNextA
TranslateMessage
GetSystemMetrics
GetDesktopWindow

gdi32

CreateSolidBrush
GetPixel
SetMapMode
GetObjectA
SaveDC
CreateFontIndirectA
SetStretchBltMode
GetTextMetricsA
CreatePalette
GetDeviceCaps
SelectObject
LineTo
DeleteObject
SelectPalette
DeleteDC
GetStockObject
SetTextAlign
RectVisible
RestoreDC
SetTextColor

glu32

gluNurbsCallback

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ