b46340aa1acaeed66acf70ce15ee0a54 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b46340aa1acaeed66acf70ce15ee0a54
Size

1.0MB
MD5

b46340aa1acaeed66acf70ce15ee0a54
SHA1

5b1d453c905d7d4840a5e37f5c7aedd4cd84ea7a
SHA256

c6e40f64311148971d2eb5a4a6215c732a50cf8f8e2207792e830288212efb6b
SHA512

e8579a4119a075c8c5ae06cb8a32465faca61325e103087a6ff6aa1c157ecceaae9ec42b83033f7aab178e2acaf3d46d2f4714a08daca4ddf1d89a931ea0b11b
SSDEEP

24576:U0c+h3qrG2zSP2ebcTlFgKzSCbHmjIJ/Pfj:UOh3oG2a2ebMXlkIlHj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b46340aa1acaeed66acf70ce15ee0a54

Files

b46340aa1acaeed66acf70ce15ee0a54
.exe windows:4 windows x86 arch:x86

7c665e7ba32d808cc500d651710313fb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetVersion
GetModuleHandleA
GlobalAlloc
LocalAlloc
GlobalFree
GetLastError
GetStartupInfoA
Sleep
GetCommandLineA
CreateEventA

gdi32

LineTo
GetTextMetricsA
CreateFontIndirectA
BitBlt
GetTextExtentPoint32A
GetObjectA
ExtTextOutA
SetROP2
GetStockObject
SelectObject
GetBkColor

user32

ScreenToClient
DefWindowProcA
EndPaint
LoadIconA
DestroyWindow
GetFocus
DispatchMessageA
DialogBoxParamA
GetMessageA
EndDialog
TranslateMessage
SetFocus
MessageBoxA
GetClientRect

msvcrt

memmove
__getmainargs
toupper
_XcptFilter
__p__commode
wcstoul

Sections

.text
Size: 512B - Virtual size: 450B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.0MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ