caab6ab16f7cd69ad974c38de3dbf433 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

caab6ab16f7cd69ad974c38de3dbf433
Size

113KB
MD5

caab6ab16f7cd69ad974c38de3dbf433
SHA1

865690279c7127a452deb3a8b7be2e8799414cd8
SHA256

e15e5c2dd3d0a1d774dbae4c75ff68f9d19309f52bb603fbdf52c15863053f0d
SHA512

3d32aa3f3343c9e45e143c939486bfaab0ef73080b81775fc005208065e70003a196d1c2e867c3e870596bd8b1bca0a26259f3fa59293a7f07d372a88c7b69c3
SSDEEP

3072:emrLYR4gqCT7kkQ5vVDWtyq8smj1sxh8l/Kaiq:ZnYnUtVZtEe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
caab6ab16f7cd69ad974c38de3dbf433

Files

caab6ab16f7cd69ad974c38de3dbf433
.exe windows:4 windows x86 arch:x86

b2933f2bdde7c18988929a4ee5512517

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateSolidBrush
SetTextAlign
LineTo
GetTextMetricsA
SelectObject
SetTextColor
GetPixel
GetDeviceCaps
GetClipBox
GetStockObject
CreateCompatibleDC
SelectPalette
RectVisible
GetObjectA
RestoreDC
CreatePalette
SetMapMode
SetStretchBltMode
SaveDC
DeleteObject
CreateFontIndirectA

user32

GetDC
CharNextA
GetDesktopWindow
TranslateMessage
GetSystemMetrics
GetParent

kernel32

CopyFileA
lstrcmpA
QueryPerformanceCounter
lstrcmpiA
lstrlenA
lstrlenW
GetCommandLineA
lstrcmpiW
GlobalFindAtomA
GetModuleHandleA
RemoveDirectoryW
GetSystemTime
FindClose
GetWindowsDirectoryA
DeleteFileA
RemoveDirectoryA
VirtualAlloc
VirtualFree

glu32

gluNurbsCallback

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ