99e26987ce7cd36dda37309332535d3f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

99e26987ce7cd36dda37309332535d3f
Size

362KB
MD5

99e26987ce7cd36dda37309332535d3f
SHA1

ff4c5710a0ed662aed18ebc744824fc2ea8bbf45
SHA256

da899cd4d9112803cdeb7976a7bf13706ad9a14cfe51511573332d3fadd41fed
SHA512

1b99985033fa9996a09174a56a314e85ed55555f3614b904e2ca0c17b8a4b8fcf27f9b1f4f6105e0e37e5fe47dbb95db712c1319cbd91754153dcc9d7696e65a
SSDEEP

6144:xeM+2bf0uz7tn4tiT/gk+/WLfmByIJvpwduxCazhXjNeNsN5:xeM+lO7qQz+OacIRpwqCayg5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
99e26987ce7cd36dda37309332535d3f

Files

99e26987ce7cd36dda37309332535d3f
.exe windows:4 windows x86 arch:x86

3cf2878286f4831f0faa65a58d8d74b3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeA
DeleteCriticalSection
GetCommandLineA
GetTickCount
EnumResourceTypesA
ReleaseMutex
GetModuleHandleA
GetExitCodeProcess
GetDiskFreeSpaceExW
TlsGetValue
GetComputerNameA
SetLastError
FreeConsole
VirtualProtect
FindClose
CreateMutexA
GetLastError
LoadLibraryExW
Sleep
CloseHandle

shell32

SHGetNewLinkInfo
SheChangeDirA
DragQueryFileA
DragAcceptFiles
SHGetSettings
DragFinish
SHFree
SHGetDiskFreeSpaceA
ShellMessageBoxA
SHAlloc
SHGetMalloc
ShellAboutA
StrChrA

glmf32

glsBlock
glsComment
glsAppRef
glsChannel
glsBinary

user32

MessageBoxA

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ