d36a98429fd5fec317683bd19b20535a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d36a98429fd5fec317683bd19b20535a
Size

59KB
MD5

d36a98429fd5fec317683bd19b20535a
SHA1

e7ef53178f361a3d45724ace9261de820d9878f3
SHA256

f34dd175e243a00caf5b337a6d49ec14007f91a69b9030af5c2e02fe95bed6fd
SHA512

2e59d693a93ba1e8c3fdf16943b25343fddd62366d9dc444026616a0f48443da8bd59acd0fb417e3216280185fe4573309de89bd0aac2c646999ba1c2317213b
SSDEEP

768:yLqAzFfwcUQESf4duBg+ZgiZiSlFfID9BQA/Da3ykzY4tFGWzLZHFd4QtbPVSQw7:yLPlw6Ff8evR3ID9dj03NFHVUcDC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d36a98429fd5fec317683bd19b20535a

Files

d36a98429fd5fec317683bd19b20535a
.exe windows:4 windows x86 arch:x86

0fd4060da2826f2ef707373a70f09320

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateThread
GetVersion
GetCommandLineA
GetStartupInfoA
GetProcAddress
GetModuleHandleA
LoadLibraryA
Sleep
GetACP

user32

DefWindowProcA
RegisterClassExA
CreateWindowExA
GetSystemMetrics
ShowWindow
GetDC
ReleaseDC
FindWindowA
GetMessageA
DestroyWindow

gdi32

SetPixel

Sections

vcasm
Size: 9KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vcasm
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vcasm
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE