96e2cfe3a4abe111980ae40c214c3ec6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

96e2cfe3a4abe111980ae40c214c3ec6
Size

100KB
MD5

96e2cfe3a4abe111980ae40c214c3ec6
SHA1

ce4587498b7aec6c2c3423939f52600cc28c0070
SHA256

45b35be3732aeb59b846e6bd5e2125ba921f83b8f3e0ab4f20cffaf99d8d016e
SHA512

e44736f9e5687d4c244f67d51e89ff1da8ddb5c05b8836d46affc25067a5b770a1f36330515274e3c464d971807b185104cc4a9a1a558c4a1672b23519a0281e
SSDEEP

3072:6XJ6+mTsihOsmNx9sz/1HrlbsLiaf5JePYedo:8mTsizOx8/1HuLdJqYedo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
96e2cfe3a4abe111980ae40c214c3ec6

Files

96e2cfe3a4abe111980ae40c214c3ec6
.exe windows:4 windows x86 arch:x86

d91f13fd1ed2c6fabca56bfb5cacdb93

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadMenuA
GetWindowTextLengthA
LoadCursorA
DialogBoxParamW
CloseWindow
GetCursor
EndDialog
CopyRect
GetWindowTextA
DrawIcon
GetFocus
InsertMenuA
GetDC
CopyIcon
DrawTextA
DrawTextW
GetMenu
DialogBoxParamA
IsWindow
CopyImage
GetDlgItem
DrawIconEx
IsMenu

kernel32

GetFileType
GetModuleFileNameA
GetCurrentProcess
GetOEMCP
GetStringTypeW
TerminateProcess
GetVersion
lstrcpynW
SetFilePointer
LCMapStringW
lstrcpynA
WriteFile
lstrcpyA
CreateFileA
LCMapStringA
GetStringTypeA
GetCommandLineA
GetStdHandle
MultiByteToWideChar
lstrcatA
SetHandleCount
GetStartupInfoA
GetCPInfo

comctl32

DllGetVersion
CreateMappedBitmap
ImageList_AddIcon
ImageList_EndDrag
MenuHelp
ImageList_LoadImageW
ImageList_Add
CreateStatusWindow
ImageList_DrawEx
CreateToolbarEx
ImageList_LoadImageA
ImageList_GetIcon
ImageList_GetIconSize

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 16.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ