a24ffbbbe533991ce056c5da7ce0773e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a24ffbbbe533991ce056c5da7ce0773e
Size

106KB
MD5

a24ffbbbe533991ce056c5da7ce0773e
SHA1

0cf5b5c410def46930a454d07aad590bd23a77f4
SHA256

e743e2c8a05f677fa6454a74637f4ecb59293e09326ea2192551a53df9a30a1d
SHA512

d7dab7f15d5574208f211c274ee7e793b17d650bacfaa088cf53d309e65c1c94e2c8480860a1688c8186d9135035ba16842d8bee369674f63a3efd6672b6e677
SSDEEP

1536:Eo81W7GM1z7HwgEteOs6CpAuwbAC97AongEQ1HM2h1LZ3i6EFeP8X90b:XWWSmz7HXfpAuw8weBxdt8X90b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a24ffbbbe533991ce056c5da7ce0773e

Files

a24ffbbbe533991ce056c5da7ce0773e
.exe windows:4 windows x86 arch:x86

7516a8b75d04821deaf0b27abf682162

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
RemoveDirectoryW
CopyFileA
FindClose
lstrcmpA
GetSystemTime
lstrlenW
GetModuleHandleA
DeleteFileA
GlobalFindAtomA
lstrlenA
lstrcmpiA
QueryPerformanceCounter
GetWindowsDirectoryA
RemoveDirectoryA
lstrcmpiW
VirtualAlloc
VirtualFree

user32

GetDesktopWindow
TranslateMessage
CharNextA
GetParent
GetSystemMetrics
GetDC

gdi32

SetStretchBltMode
SetTextAlign
CreateCompatibleDC
CreateFontIndirectA
RestoreDC
GetClipBox
GetPixel
GetStockObject
SetTextColor
SaveDC
CreatePalette
CreateSolidBrush
GetDeviceCaps
DeleteObject
GetObjectA
SelectObject
GetTextMetricsA
DeleteDC
LineTo
SetMapMode
RectVisible

glu32

gluNurbsCallback

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ