ab499a660cca20284dea8a723935118f | Triage

Sharing

General

Target

ab499a660cca20284dea8a723935118f
Size

160KB
MD5

ab499a660cca20284dea8a723935118f
SHA1

6110b6fae0330e5630edf019e13de3166a314092
SHA256

02fa7890063520b02768e825a46493f87093314bec43783632fd79b7d4a32fa2
SHA512

171008ffa2fff5a7e0bdd047d3fab27647e2fe885449b14bd01fe4e1a7ade04bb3035cdc2b76c023367386fc9b6cce7690c9c98501e8cef5e2a5df98281c098e
SSDEEP

3072:DHapNRtkAfTiEo5Yg5zXqq5ZUrp7uTuWocYWER8BLLNVi73eR8greqb88:DHapNR+MWEoug3I7uoWEOLHE3e3rDD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ab499a660cca20284dea8a723935118f

Files

ab499a660cca20284dea8a723935118f
.exe windows:4 windows x86 arch:x86

e8ddf5b2c1859804dcc7eac64f9e83b7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalMemoryStatusEx
IsValidLocale
HeapSetInformation
FlushInstructionCache
FatalAppExitA
GetModuleHandleW
EnumCalendarInfoA
GetConsoleCursorInfo
lstrlenW
ReadFileEx
GetShortPathNameA
OpenFile
SetEnvironmentVariableA

user32

wsprintfW
MsgWaitForMultipleObjectsEx
PeekMessageA
SetActiveWindow
GetDlgItemTextA
AdjustWindowRectEx
CharNextExA

gdi32

GetObjectW
GetOutlineTextMetricsA
SetBitmapBits
PaintRgn
CreateRectRgnIndirect

Sections

.text
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 816B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data0
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE