ca2b91bb532037f7fb037d7d657e75a9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ca2b91bb532037f7fb037d7d657e75a9
Size

325KB
MD5

ca2b91bb532037f7fb037d7d657e75a9
SHA1

12aac5096dd573f139ff24ae15f540f918773b10
SHA256

89b6d6b8d8124fa27ee009d9f1bc26fe69766077612e23acb811429aafbbd475
SHA512

23a9584370b1e524e30987d48e282e2ddc5e3658c43f0181e6ab3cb7494caf0bd876f73f44b0168f632f6acd79b0520ed442f3beb694202f8d993bf5518613ec
SSDEEP

6144:hR/uEd1AXuNdr2Vzjg1yHX5xq/BPX9tugmN9cVCQnxtVKsj:hR2Xkkp01yHpxq5znmN9wNTAsj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ca2b91bb532037f7fb037d7d657e75a9

Files

ca2b91bb532037f7fb037d7d657e75a9
.exe windows:4 windows x86 arch:x86

54092356b6b4737e0a3a4b32e4e0487f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

version

VerQueryValueA

gdi32

UnrealizeObject

comctl32

ImageList_SetIconSize

comdlg32

GetOpenFileNameA

Sections

CODE
Size: 315KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE