b830e0f51a9dc3a45b968962ea80b84a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b830e0f51a9dc3a45b968962ea80b84a
Size

198KB
MD5

b830e0f51a9dc3a45b968962ea80b84a
SHA1

2a28e7beb6ecd1204f21807cf517e31783e390b2
SHA256

79fc85cd0874f3666272ed4640c188772e2838f939a7edc1b596bea6d6b68a5b
SHA512

7f417b79693d9e82b5915e3713d337cf0495945e47f098d98ad4cc09ec380be153f915f5a14456e34b72fdfeabd6bbcff2f3226cfec5024595b028cf993a0898
SSDEEP

6144:rtB56v13Tni3OT0DUNIBn1/1TPqafUJMH:hq5i300Dnn1/1TPqFKH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b830e0f51a9dc3a45b968962ea80b84a

Files

b830e0f51a9dc3a45b968962ea80b84a
.exe windows:5 windows x86 arch:x86

d1f520171c7fa8ae38e5fc7f63d49e86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoGetCancelObject
CoTaskMemAlloc

user32

PostQuitMessage
GetWindowLongA
GetDC
SetCursor
CharNextW
SetTimer
SetWindowPos
GetParent
PostMessageW
GetWindowRect

kernel32

VirtualFree
HeapAlloc
VirtualAlloc
GetLastError
LoadResource
GetProcessHeap
InterlockedExchangeAdd
FindResourceA
VirtualProtect
CreateDirectoryA

Sections

.textbss
Size: - Virtual size: 388KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 451B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ