c4084ad31427a557072f1de4da5cf80c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c4084ad31427a557072f1de4da5cf80c
Size

179KB
MD5

c4084ad31427a557072f1de4da5cf80c
SHA1

d99578f5c147a4edbdabefca6fe38332ea631cf0
SHA256

3a4421dc79a641cb52da7cb723f24da0bf9a5be29f0a335acf4271be671ef507
SHA512

eea4af0718df1f0b8fc78b84725d4e3952588df282064aaa2a853f0c9b32984e2f75a1e77d45a4e3c707561a8c0593002b6dedc611ea0796ca5fbcb6df3c6dba
SSDEEP

3072:ucnXuEf86YFPSg4QARC0mPDE/uQiG+GYCvhF86/qud9XjAjhnhsDqa8cz+EO+Mf3:zXVQFPS0ARC7E/xHmWj8jhyWc6MwdH/J

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c4084ad31427a557072f1de4da5cf80c

Files

c4084ad31427a557072f1de4da5cf80c
.exe windows:4 windows x86 arch:x86

a7efd71b90c90857efd19907c1ed5f15

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SendMessageA
EndDialog
DialogBoxParamA

kernel32

VirtualProtect
GetModuleHandleA
GetModuleFileNameA
ExitProcess
RtlZeroMemory

comdlg32

ReplaceTextA
PrintDlgA
PageSetupDlgA
GetOpenFileNameA
FindTextA
ChooseFontA
GetSaveFileNameA
ChooseColorA

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 534B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE