9a179ec32fa90fe3f0fc3117360f52d1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9a179ec32fa90fe3f0fc3117360f52d1
Size

27KB
MD5

9a179ec32fa90fe3f0fc3117360f52d1
SHA1

4c01b6843223b2859e7e3ec9f75ecaf6fc473930
SHA256

203e462b51e0d1163a08f0425237b5a1fe908c48ec1d201895fc5c01cc2f8b3e
SHA512

04c69b0d3404b541b8ef7e0128d3a07981ca8657218b095367db3a3fde00fba1cad15fa7ae64499ef53fb460978461f40ad94fd5e3adf6a6674254925af76bc8
SSDEEP

384:Q4viS0/GWZ55/fodvWSQ95cqLXqY9vwzOXqs8jYHXSwu78r3Ss9PWfXrjGVBz+6i:Kr5Bosb5cwz9vwSkYHXa7yN9PWf6F1u

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9a179ec32fa90fe3f0fc3117360f52d1

Files

9a179ec32fa90fe3f0fc3117360f52d1
.exe windows:5 windows x86 arch:x86

ea7af9face686a8d4e1100f05c045f61

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteDC
GetBkColor
SetBkMode
DeleteObject
SetROP2
CreateCompatibleDC
SaveDC
GetStockObject

user32

IsDlgButtonChecked
SetMenuItemBitmaps
GetMenuItemCount
PeekMessageA
TrackPopupMenu
GetMenuCheckMarkDimensions
GetSystemMetrics
GetWindow

ole32

CoDosDateTimeToFileTime
CoGetInterfaceAndReleaseStream
OleRegGetUserType
OleUninitialize
BindMoniker
CoFileTimeToDosDateTime
OleRegGetMiscStatus
CoDisconnectObject
OleSave

advapi32

RegCloseKey
CopySid
IsValidSid
RegOpenKeyExA
RegCreateKeyA
SetSecurityInfo
AllocateAndInitializeSid
LookupAccountSidA

msvcrt

_access
wcsncpy
_strnicmp
_beginthread
_stat
iswctype
strcmp
_splitpath
fprintf

kernel32

GetProcessAffinityMask
GetCurrentThread
MultiByteToWideChar
FileTimeToLocalFileTime
OpenProcess
HeapAlloc
CreateEventA
GlobalAlloc
HeapSize
GetLastError
QueryPerformanceCounter
lstrcmpiA
FreeEnvironmentStringsA
GlobalMemoryStatus

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ