c788c1d61191d3e4473d2534d53f864c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c788c1d61191d3e4473d2534d53f864c
Size

124KB
MD5

c788c1d61191d3e4473d2534d53f864c
SHA1

a39eb73cffa684423d211e8dd7bc4759543c05a1
SHA256

5ec2cad0762158c85558d40f4c9b90c55d227a1422720806563ccab0a48e3319
SHA512

1630d3edbd75bbc6172b8fd573435b93448578864ba53e0915d27bf3ab44c91f76d458d630f5a5ae48f63b10e511238790f08982e880601e4f3bfcf860c431b7
SSDEEP

3072:q8U5oTcs1ckhfiiCZm8KZvDYQb9fxUqfD4X9LAcyW:7TcSPfiilZEQdx8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c788c1d61191d3e4473d2534d53f864c

Files

c788c1d61191d3e4473d2534d53f864c
.exe windows:4 windows x86 arch:x86

6a63885cfe9c9d777a909a589b8c5591

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindow
CreateMenu
GetSysColorBrush
GetActiveWindow
ShowScrollBar
IsWindowEnabled
SystemParametersInfoA
GetWindowTextLengthA
ShowWindow
IsWindowUnicode

kernel32

GetOEMCP
LoadLibraryA
GetStringTypeA
GetStdHandle
ExitProcess
GetSystemDefaultLangID
GetStartupInfoA
VirtualAllocEx

gdi32

GetPaletteEntries
GetPixel
SetPixel
GetBkColor
CreateDIBitmap
GetBkMode
SelectObject
CreateBrushIndirect

Exports

Exports

_TmF6AOFWVWu
GH2PbF5GzGsp16@4
_hY74nXipdly_2@4
_D8J1Mk2iuTtUQ
_wn4KTQ4nj@4

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 105KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ