994f7edbce60d308b76fa99ad295e297 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

994f7edbce60d308b76fa99ad295e297
Size

58KB
MD5

994f7edbce60d308b76fa99ad295e297
SHA1

6f99053952eb1b99c250bdb886993357cdf0700a
SHA256

d1e93f6e45da2ec41ac8477f96ad97a78793f9814d66fb4da18ed6c0a7836865
SHA512

c60e401b9d6b4ee58f728124c13018d09a8a24b397b4f62d40610be89a05c322774349b37c9970bc15165c883e2f4a41fc3fc7123323ecaa49a7e8c6afcd8bf8
SSDEEP

1536:fybXHjr8LbA/wg99swMWO7VvsJhDH4mFYpCrxyob:fybT8bOwg75MWOSJMSQob

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
994f7edbce60d308b76fa99ad295e297

Files

994f7edbce60d308b76fa99ad295e297
.exe windows:4 windows x86 arch:x86

7d778bb45a6d3a4e9e0f2353552a90a1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawTextA
DrawIcon
DrawCaption
DestroyMenu
DestroyCursor
DestroyCaret
DefDlgProcA
CreatePopupMenu
CreateMDIWindowA
CreateIconFromResource
CreateCursor
CopyRect
CopyImage
CharToOemBuffA
CharLowerA
ChangeMenuA
BeginPaint

kernel32

CloseHandle
lstrcmpiA
lstrcatA
WriteFile
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
SetLastError
LocalAlloc
LeaveCriticalSection
GetVersion
GetSystemTimeAsFileTime
GetPrivateProfileStringA
GetLocalTime
FindResourceA
EnumResourceNamesA
CompareStringA

Sections

.text
Size: 16KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 37KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ