d4d49f1e527fba5c124dc3f848a1fd53 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d4d49f1e527fba5c124dc3f848a1fd53
Size

178KB
MD5

d4d49f1e527fba5c124dc3f848a1fd53
SHA1

4e97b3d77d811cf567019ff7eb71c7d13c1938ef
SHA256

e0ccecbe125f3eae724503cf9080657952a410acaac32fb28e0c96f11db73d55
SHA512

373600923ae69533e8697fc4308e3e32ce40b9900980e683613ef9735f2638b431f4e67d3f1b8dbefdc3d8ebb5e874ec4ca246220a066e2639ef73b180ebfffa
SSDEEP

3072:/ApdpOzF0oNFAF1fS0SP35oc1UrKwPKLHtFGUQtuDvUkIBSRtfLxbCDhkVsJG8Bg:Udpyn8FQ0SP35wruNFrLvU1SPDxbCD+P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d4d49f1e527fba5c124dc3f848a1fd53

Files

d4d49f1e527fba5c124dc3f848a1fd53
.exe windows:4 windows x86 arch:x86

caaeeaad69d8c41e4f63b437aec66d5f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalGetAtomNameW
FindNextFileA
GetCurrentProcessId
WriteFile
IsDBCSLeadByte
SetFilePointer
GetCurrentThreadId
QueryPerformanceCounter
GlobalHandle
EnumResourceTypesA
GetModuleHandleA
lstrlenA
WideCharToMultiByte
GetSystemDirectoryW
ReadFile
FindFirstFileA
EnumResourceLanguagesW
FindClose

newdev

UpdateDriverForPlugAndPlayDevicesA

oleacc

LresultFromObject
CreateStdAccessibleProxyW

Sections

.text
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ