b48f93eb62c06723fddfe413d242e095 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b48f93eb62c06723fddfe413d242e095
Size

124KB
MD5

b48f93eb62c06723fddfe413d242e095
SHA1

1e7b67576ad718111151aa777b1110eb58fa4fcb
SHA256

e56c47080e13085a86095c42e68f87fa17959cd98a76a1bd1bd3a18ffbe47745
SHA512

3bf6713bc6df4e18326ffca24e85ac74f3ab128c3f0c8b819d7eddab8f6782eb870069c0933f0c5292cbe6283a9ba9d640037d9020184927c3f55ddd141dbc4a
SSDEEP

3072:S+0mcXinO63YdJhMA6QeszabPuScdRwIfDVc:dcXinOHEQewabPVcdmIfh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b48f93eb62c06723fddfe413d242e095

Files

b48f93eb62c06723fddfe413d242e095
.exe windows:4 windows x86 arch:x86

0f48ff5d58f2f51d18959ff793b53ce1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryInfoKeyA
RegCreateKeyExA
RegEnumKeyA

gdi32

GetBitmapBits
GetBkColor
CreateCompatibleDC
CreatePalette
CreateDIBSection
CreateFontIndirectA
GetDIBits
CreatePenIndirect

user32

LoadIconA
FrameRect
IsMenu
CreateMenu
GetMenu
GetActiveWindow
GetCapture
IsChild

kernel32

LoadLibraryA
GetCommandLineW
GetModuleHandleW
GetCurrentThread
IsBadReadPtr
ExitProcess
VirtualAllocEx
lstrlenW
IsBadHugeReadPtr

comdlg32

GetOpenFileNameA

Exports

Exports

_DQBciIDiF@24
E33Ao@12

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ