d34b414bc1c4c07297f634a2f96bd91f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d34b414bc1c4c07297f634a2f96bd91f
Size

117KB
MD5

d34b414bc1c4c07297f634a2f96bd91f
SHA1

143e02a8d6830fbe042f10f452eb399f701ed5b6
SHA256

08fc86300e01b262ea1b637386bb7fb3587bbd33cb26b25de31df45bcefead48
SHA512

b02951445bdc08c1901c0c9a165bc0a13a6645b84eccddc97cbac156d84ca1991dcb831eca0eb7ec86679493341791335d40ce41f798742de25d107342d7b764
SSDEEP

1536:0As99OWmYfBDKdPTG2CUDlyV0t9igcH3IEXWYPxcCXsZUD8v+iSh3Vxnnnwg:66xQhKdTGHcyVA9A3HXzZcCcUBnnw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d34b414bc1c4c07297f634a2f96bd91f

Files

d34b414bc1c4c07297f634a2f96bd91f
.exe windows:5 windows x86 arch:x86

7289080447401f3843268614670b9ab0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\tslf\iSRL\iDXgl\mxovmbwl.pdb

Imports

user32

GetForegroundWindow
GetWindowLongA
GetWindow
GetAsyncKeyState
GetScrollPos
GetMenuItemCount
CopyAcceleratorTableW
TileWindows
SendInput
GetDC
EnableWindow
SetTimer

comctl32

PropertySheetA
DestroyPropertySheetPage

kernel32

RaiseException
FileTimeToLocalFileTime
GetProcAddress
GetDateFormatA
lstrcmpiW
lstrcatW
lstrcpynW
UnmapViewOfFile
TlsFree
LoadLibraryW
GlobalDeleteAtom
FindResourceW

gdi32

SetAbortProc
GetNearestPaletteIndex
FillRgn
SetBkColor
ExcludeClipRect
LPtoDP
PatBlt
CreateDIBSection
GetTextExtentPointA

Exports

Exports

?cLlVeAiRrdbRv@@YGPAI_N@Z

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 918B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ