c084da38c75e34e851edf6c0ec47e23d | Triage

Sharing

General

Target

c084da38c75e34e851edf6c0ec47e23d
Size

113KB
MD5

c084da38c75e34e851edf6c0ec47e23d
SHA1

1205d1a1210a0d7fdd70d89b12f307ee4ac4b86f
SHA256

5f651bd3ac9dcb0962e18ee3d0cd326ea6b4aa152dc2882e3be14b8508adb9e6
SHA512

60c464ac4d5bded70fc698b165d1d80165f5602799454d49ce801c547f1e0e8168c0356e0816af2eecc09b49223278a0dceacfce5ee57261b31423542269097d
SSDEEP

3072:gqKWELSBVGcpsnoaMpYW133z8p4M91cqvawz:hKhRtoa7q3zy4Mpr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c084da38c75e34e851edf6c0ec47e23d

Files

c084da38c75e34e851edf6c0ec47e23d
.exe windows:5 windows x86 arch:x86

e3d3bbefed4d7e0ce98db4cc01a9310d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextMetricsA
SetTextAlign
CreateFontIndirectA
DeleteObject
CreatePalette
SelectPalette
RestoreDC
LineTo
GetPixel
SelectObject
GetClipBox
SaveDC
DeleteDC
CreateCompatibleDC
CreateSolidBrush
SetMapMode
GetStockObject
RectVisible
GetDeviceCaps

kernel32

RemoveDirectoryA
CopyFileA
lstrcmpiA
VirtualAlloc
lstrcmpiW
lstrcmpA
VirtualFree
lstrlenW
lstrlenA
GlobalFindAtomA
GetWindowsDirectoryA
RemoveDirectoryW
FindClose
GetModuleHandleA
GetCommandLineA
GetSystemTime
QueryPerformanceCounter
DeleteFileA

user32

GetSystemMetrics
GetDC
GetDesktopWindow
TranslateMessage
GetParent
CharNextA

glu32

gluNurbsCallback

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE