abdc9d10a25586602325773d913d3119 | Triage

Sharing

General

Target

abdc9d10a25586602325773d913d3119
Size

188KB
MD5

abdc9d10a25586602325773d913d3119
SHA1

20fb0d68afb6c58fb4269856294e97918614167c
SHA256

cf2fcbc85af3ca823e86834ffec235609265ea84684c834408d6c35cdb5e9c2e
SHA512

f17aa1e11367f95fae1d26d9c5487698bceb823b1caf859186ef57aaf822d02904f8b32b133065f21401a33699d74dbf22d7b78d4b8b435362bf7109d64cd9a0
SSDEEP

3072:HDtMuqWPlBbSN11VB8z6AZsulG7reAu/NYMse9X2mI5o0ARlpw0Sayn52siSo9qs:HD+urNEjB8z1yu+eAu/WM3t2mI5Ile0W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
abdc9d10a25586602325773d913d3119

Files

abdc9d10a25586602325773d913d3119
.exe windows:4 windows x86 arch:x86

a03fb839ddf8ba6c7f0971b547b39700

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

setupapi

CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

user32

EndPaint
CallWindowProcA
InvalidateRect
GetClientRect
GetParent
IsWindow
GetFocus
SetFocus
UnregisterClassA
IntersectRect
BeginPaint
UnionRect
IsChild
RealGetWindowClassA
RegisterClassExA
GetKeyState
PtInRect
CreateWindowExA

kernel32

GetProcAddress
GetSystemInfo
GetACP
CreateFiber
RtlUnwind
TerminateProcess
IsProcessorFeaturePresent
ResumeThread
HeapAlloc
GetLocaleInfoA
InterlockedCompareExchange
GetCommandLineA
VirtualProtect
EnumResourceNamesA
VirtualQuery
VirtualAlloc
ExitProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
HeapSize
SetThreadPriority
LoadLibraryA
HeapDestroy
VirtualFree
HeapReAlloc
WriteFile

Sections

.text
Size: 170KB - Virtual size: 169KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imul
Size: 512B - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ