b74b5557ba33ae6fa9f5b286c5c1f495 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b74b5557ba33ae6fa9f5b286c5c1f495
Size

112KB
MD5

b74b5557ba33ae6fa9f5b286c5c1f495
SHA1

cec99398f9df4dc56313b9f08e9e04dd394889af
SHA256

a05390bff982eeddff8f50d8c09607528efdb555c4fdca7ebb973df7e675cca4
SHA512

9379762b51667452dc5bf77c436b5a4005198401b7abe6af5247bb4a843425b17254db7d2ca24af0f1c4f2aa708bb9f9058ca9ffba1a552beee1ffdf84e7737e
SSDEEP

1536:/pGuqSWPah4GLWDtZMxQI9t65TTpTVnETryuuGRu70vVjt/lMURDoq4OZZZLlCIS:/wuqSsapYy90phMeGUoBtPRD68wb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b74b5557ba33ae6fa9f5b286c5c1f495

Files

b74b5557ba33ae6fa9f5b286c5c1f495
.exe windows:4 windows x86 arch:x86

edc6e7c1b463d47cf4481d037fbe60d7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyExW
RegEnumKeyW
RegDeleteKeyW
RegOpenKeyExA
RegEnumValueW
RegEnumKeyExA
RegQueryValueA

comctl32

ImageList_AddIcon
ImageList_DragEnter
ImageList_GetIcon
ImageList_EndDrag
ImageList_LoadImageA
CreateUpDownControl

gdi32

GetClipBox
CreateCompatibleBitmap
CreateBitmap
CreatePalette
CreateSolidBrush

user32

GetFocus
DrawTextA
GetDC
CopyIcon
LoadCursorA
IsWindow
CopyRect

kernel32

WriteFile
ExitThread
OpenFileMappingA
GetComputerNameA
GetLastError
GetStdHandle

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 1018B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 26KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ