d45b73be58f0f530bf92c5af6011b038 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d45b73be58f0f530bf92c5af6011b038
Size

83KB
MD5

d45b73be58f0f530bf92c5af6011b038
SHA1

d451166c2fac54481cbdf510be56eb7f9b5d1ebf
SHA256

cfd52134a1bdb479510e30ade38d8b719e39e2e6d4639aac42b8467fad2c43e8
SHA512

1abe25c212f2b707369c7f6e5af0c7129efc638dad2e3dbe760f7bbe523f36029bb5be696a1f51098149a61a06a0ada94e56801d297284a97c1f28e669acb0e6
SSDEEP

1536:CIrzrnDW9VwCzWuaIdpOEQ0BPSAccV3cnFVb3IhvTmo:COzrakCdFQKP/0FB3OTr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d45b73be58f0f530bf92c5af6011b038

Files

d45b73be58f0f530bf92c5af6011b038
.exe windows:4 windows x86 arch:x86

78d0f10e6b23d53dba0479d96f6ae20b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalUnlock
GetAtomNameA
InterlockedExchange
LoadLibraryExA
HeapCreate
GetModuleHandleA
GetSystemDefaultLangID
lstrlenA
WaitForMultipleObjects
GetCommandLineA
SetConsoleCP
CloseHandle
WaitForSingleObject
GetConsoleCP
GetStdHandle
VirtualProtect
GetTickCount
CompareFileTime
GetVersion
SuspendThread
HeapReAlloc

user32

CreateIcon
GetKeyboardLayout
DrawCaption
SetWindowPos
EnableScrollBar
CopyImage
CreateMenu
DialogBoxParamA
FindWindowA
DragObject
InvertRect
SetScrollInfo
GetDlgItem
SetPropA
DispatchMessageA
InsertMenuA
GetKeyState
IsDialogMessage
DestroyMenu
GetCursorInfo
FillRect

advapi32

RegEnumValueA
RegCloseKey
RegEnumKeyA
RegQueryInfoKeyA
RegCreateKeyExA

apphelp

ApphelpCheckExe

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 808KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ