b6511231cb99b5bd158c7501a9acce6f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b6511231cb99b5bd158c7501a9acce6f
Size

131KB
MD5

b6511231cb99b5bd158c7501a9acce6f
SHA1

14411263751440290529557451445abc17ad1109
SHA256

5cfadc146ce5088b3a956534a7fdab48a0754a1c3eb01103d6e1fae23103dc4d
SHA512

e5163411ef08a6fb53f72f03bc1361b7567413489fd862c460024a4cb8ffe12649411da98213b57889fd5914dd3c6b668b6a822555378cdad6658577fac82242
SSDEEP

3072:EzxtzxywkhuRVFJ3T2xXzcyk2TWM7+9PCzItIHhhHyTtqCEKG:qZywIEV33T3CTWMcCEYXy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6511231cb99b5bd158c7501a9acce6f

Files

b6511231cb99b5bd158c7501a9acce6f
.exe windows:4 windows x86 arch:x86

9ce96cb98a19ee18e88050469b83f5cb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAllocEx
ExitProcess
SetErrorMode
LockResource
ReadFile
LoadLibraryA

msvcrt

exit
sprintf
calloc
srand
sqrt
rand
mbstowcs
clock
memset
wcstol
swprintf
atol
malloc

gdi32

SetBkMode
CreatePenIndirect
SetPixel
LineTo

user32

GetMenuItemInfoA
IsCharUpperA
GetMenuItemCount
EnableWindow
GetMenuItemID
GetMenu
GetActiveWindow

Exports

Exports

_SDo3p6Bl@8
_OIwuY6bN3uE@8
ZIldrmPmtiU94@16
NqKFiNHN@20
CgZxBNfuvJ
_t8EgTz@8
5ShGrJVF@16
AdW2CDS
_rDWfJRj_oWdS
i3X1Ujxq4FQB
_NjNlT65L2KrD@12
2YZW8pqRfKb
_9RmvuM@20
_iGeD6V
_9TjVd9HO
zTEngTJtHNjwr
fYIX5fetlRDu@12

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ