c4daa9584172a26c9b113b22256a531d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c4daa9584172a26c9b113b22256a531d
Size

142KB
MD5

c4daa9584172a26c9b113b22256a531d
SHA1

71892e9f002708e342de87c640984c07e611aecf
SHA256

5abe80d0f910c06616aec7fd1a79b89e9add70fa99e983cd9a4bda350d448fb0
SHA512

7b5a2eae99b253958d0241841c1583be7517230dac232cdef68914272109dcea9d54e411ad65d2eb089f9c282c5ee2db4fd63b89200a9b90d64952f28a060693
SSDEEP

3072:1wwHWVEFDkIezQpK2u/1NfoI3Ajw5mYJ77TTzzNfyqcG4TqsnZY3Ca:1ww6EyIHU2u/1NfoIAKPdPpfBRFsnZsC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c4daa9584172a26c9b113b22256a531d

Files

c4daa9584172a26c9b113b22256a531d
.exe windows:4 windows x86 arch:x86

3cd72152b4c5db859fe0cc087ba7c684

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateHardLinkA
lstrcmpA

user32

FlashWindowEx
SendDlgItemMessageW
AttachThreadInput
CharNextA
CloseClipboard
Win32PoolAllocationStats
GetAsyncKeyState
AttachThreadInput

shell32

SheSetCurDrive
SHCreateDirectoryExW
SHGetPathFromIDListA
PrintersGetCommand_RunDLL
ExtractIconExW
SHLoadInProc
DragQueryFileAorW
ExtractIconW

Sections

CODE
Size: 9KB - Virtual size: 238KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 129KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pack32
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ