ad4359980718719bf9cd6b520514476a | Triage

Sharing

General

Target

ad4359980718719bf9cd6b520514476a
Size

107KB
MD5

ad4359980718719bf9cd6b520514476a
SHA1

2a2c64a0f773a78cbe45cab056633af498b8b46b
SHA256

e777289ee4c7f1db49f8abdc6740290e975451c7f2efe08e74358c595e2214a9
SHA512

362b8c824e34a90a7846f6beea80aed94bf0bf3c6049c86316bf70bb87c7cf447eb05be124fd9dc4de06886485266d037adfc036e4181a8740ce1632517d7ced
SSDEEP

1536:CZ8yAtbXp9E9LW01xGAvpslmcKLooRLAxMMGwi7doRt15501oG73i6Ej61ZHstGu:CZkE9zc0DooRLEG3BoR5OqYZMtGP2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ad4359980718719bf9cd6b520514476a

Files

ad4359980718719bf9cd6b520514476a
.exe windows:4 windows x86 arch:x86

dab025e7e11ea63bd9ed23cb37e35f95

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

TranslateMessage
GetDC
GetDesktopWindow
CharNextA
GetParent
GetSystemMetrics

kernel32

lstrcmpA
lstrlenA
GetSystemTime
QueryPerformanceCounter
VirtualAlloc
GlobalFindAtomA
DeleteFileA
CopyFileA
GetCommandLineA
GetModuleHandleA
lstrcmpiW
VirtualFree
lstrlenW
RemoveDirectoryW
FindClose
GetWindowsDirectoryA
RemoveDirectoryA
lstrcmpiA

gdi32

GetStockObject
GetTextMetricsA
RestoreDC
CreateCompatibleDC
SetTextAlign
CreatePalette
CreateFontIndirectA
SaveDC
RectVisible
SetMapMode
SetTextColor
SelectPalette
CreateSolidBrush
DeleteDC
SetStretchBltMode
GetDeviceCaps
SelectObject
DeleteObject
GetObjectA
LineTo
GetClipBox

glu32

gluNurbsCallback

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ