HEUR-Trojan[.]Win32[.]Generic-d155288e7dd0e001cafb62d3db940897a6075d86f8b3d37c664c680f2b46e76d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

HEUR-Trojan.Win32.Generic-d155288e7dd0e001cafb62d3db940897a6075d86f8b3d37c664c680f2b46e76d
Size

196KB
MD5

0119d454b9449fe490f26bbbaadd64a5
SHA1

ca1e356e6dbd7b72c0f4e8e61667d07ece116d48
SHA256

d155288e7dd0e001cafb62d3db940897a6075d86f8b3d37c664c680f2b46e76d
SHA512

bcaba18167fba801e9bec1d6c468ed0bfc9147d6f3fd40b3df07eca4433359956e78ad4395869da422b23f7155d96c87eec009799cfaf8753d497cf028bc36cd
SSDEEP

6144:pEjpvYc3YJ/HvD9hTKCyI7TwmdMlL992VKmH33KeJxe:aVe/v5hGCyB3R2rBq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
HEUR-Trojan.Win32.Generic-d155288e7dd0e001cafb62d3db940897a6075d86f8b3d37c664c680f2b46e76d

Files

HEUR-Trojan.Win32.Generic-d155288e7dd0e001cafb62d3db940897a6075d86f8b3d37c664c680f2b46e76d
.exe windows:4 windows x86 arch:x86

46926126a68d3af91cab4c9877015827

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

crypt32

CryptBinaryToStringW

kernel32

GetProcAddress
LoadLibraryA
VirtualProtect
GetModuleHandleA
lstrcpyA
GetStartupInfoA
lstrlenA

user32

RegisterClassW
IntersectRect
LoadIconA
GetWindowRect
SetWindowLongA
LoadStringA
SendMessageA
wsprintfA
MessageBoxA
ReleaseDC
GetDC
GetDesktopWindow
SystemParametersInfoA
GetClientRect
GetSystemMetrics
DrawTextA
InvalidateRect

advapi32

RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegQueryValueExA
RegCloseKey

gdi32

CreateCompatibleDC
DeleteDC
GetDeviceCaps

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 12B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 54B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE