cb35c20190f9b70205fd36b4fdc81fdf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cb35c20190f9b70205fd36b4fdc81fdf
Size

636KB
MD5

cb35c20190f9b70205fd36b4fdc81fdf
SHA1

a2823b086722b18a4516437fd9b2e22d6e403e91
SHA256

a38f2d1c88ae9d728b5eaba838edb04e0189aa4a20a8e0c65b30530c3dade8c6
SHA512

43de0fdcc5c9f50ce873309da6a27eef8145fdb437e9f536249d14ec584297029e1b9e3b6c96889f08332d743eea3291a2ffef6fd819547c9bb3e1ad1a3395b2
SSDEEP

12288:PakxkB3WHQjD4JIVhFpDT0o63+wiaAslHUX5DeBEhpe6VGb5+cSABkz6:PaRUwD4JSFpJ6OwiaXHUqEhQDbETABk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cb35c20190f9b70205fd36b4fdc81fdf

Files

cb35c20190f9b70205fd36b4fdc81fdf
.exe windows:4 windows x86 arch:x86

7c98bdeff04a3cfcfa6810187c7ce328

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleCP
CloseHandle
lstrlenA
GlobalUnlock
CompareFileTime
GetSystemDefaultLangID
HeapCreate
GetModuleHandleA
VirtualProtect
SetConsoleCP
GetVersion
SuspendThread
GetCommandLineA
WaitForMultipleObjects
GetTickCount
WaitForSingleObject
HeapReAlloc
LoadLibraryExA
GetStdHandle
InterlockedExchange
GetAtomNameA

user32

SetWindowPos
GetKeyState
SetPropA
DrawCaption
EnableScrollBar
FindWindowA
DispatchMessageA
SetScrollInfo
FillRect
IsDialogMessage
DragObject
GetKeyboardLayout
CopyImage
InsertMenuA
DialogBoxParamA
DestroyMenu
InvertRect
GetDlgItem
GetCursorInfo
CreateMenu
CreateIcon

advapi32

RegCloseKey
RegCreateKeyExA
RegQueryInfoKeyA
RegEnumKeyA
RegEnumValueA

uxtheme

GetThemeColor

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ