b53c7b820559bff0207ecd869d652c00 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b53c7b820559bff0207ecd869d652c00
Size

16KB
MD5

b53c7b820559bff0207ecd869d652c00
SHA1

ef946961f7cb94f47e761d4a4b60113806401534
SHA256

a0a3f980729374fa3cc226380d5f6107f13fcfb83ea2bb30d06514fc83baa8c9
SHA512

218633e98a5de6666e508d909f024f6b69a33c7bd683f16bf9ef822f8062d0afdfcbace7ce2dec307f105dce0f2c92f6297ea77805be17043da879749230168d
SSDEEP

192:JGqlBpNwz48vywdaW3W8RZ+W+erHm8HhwMcbpqwsZfX:bNZ83oW3W8RZ+W+e9HhwMcbppspX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b53c7b820559bff0207ecd869d652c00

Files

b53c7b820559bff0207ecd869d652c00
.exe windows:4 windows x86 arch:x86

c81f1c3e8d77fe043a1037013227d308

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
InterlockedExchange
RaiseException
SetConsoleCP
GetLocaleInfoA
CloseHandle
GetDriveTypeA
GlobalDeleteAtom
EnterCriticalSection
SetErrorMode
GlobalAddAtomA
FoldStringA
HeapCreate
GlobalFree
GetStdHandle
LoadLibraryExA
VirtualProtect
GetACP
GlobalUnlock
GetLastError
LockResource

user32

DrawTextA
GetWindowTextA
GetClassNameA
ShowWindow
GetCursorPos
GetFocus
ValidateRect
GetMenuItemInfoA
GetParent
EndPaint
GetActiveWindow
GetWindow
CharToOemBuffA
ClipCursor
IsIconic
ReleaseDC
DrawEdge
SetForegroundWindow
BeginPaint

version

VerFindFileA
GetFileVersionInfoA
VerQueryValueA
VerInstallFileA
GetFileVersionInfoSizeA

rasadhlp

WSAttemptAutodialName

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ