d600184aaaee41bf55f14e35c137f479 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d600184aaaee41bf55f14e35c137f479
Size

32KB
MD5

d600184aaaee41bf55f14e35c137f479
SHA1

f94c3a7c9661d266a6c20ca7782380dce027a270
SHA256

e2b59868b4a6b1ba34d87d67f9d26f7623bd9dc3354a101e3a3bcefabb68e97e
SHA512

e3bc4901fad81fd9df4a97e3ffa6be82e297ed0cda840b16a16630fd719a251fa16f9f3988ee2c414688a09c9e7702aabb0728540ab0585284d7f6dd001ca614
SSDEEP

768:FVYMhjDuI2LRL6CVwioCzKVS5Nx7JZcogwnlfcRd1yK:djDuIqL7VFoCms5NZvcogwnlfcRdY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d600184aaaee41bf55f14e35c137f479

Files

d600184aaaee41bf55f14e35c137f479
.exe windows:4 windows x86 arch:x86

0716b7c4e6e0c2737a559cd9bd487ba7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindResourceA
LoadResource
LockResource
lstrcatA
SizeofResource
MulDiv
RtlZeroMemory
ExitProcess
MultiByteToWideChar
GlobalFree
GlobalAlloc
GetTickCount
GetModuleHandleA
SetLastError

user32

GetDC
SetDlgItemTextA
SetClassLongA
SendMessageA
LoadIconA
LoadCursorA
GetDlgItem
EndPaint
EndDialog
EnableWindow
DialogBoxIndirectParamA
BeginPaint
wsprintfA
SendDlgItemMessageA

gdi32

DeleteDC
GetDeviceCaps
DeleteObject
CreateCompatibleBitmap
SelectObject
BitBlt
CreateCompatibleDC

oleaut32

OleLoadPicture

ole32

CoTaskMemFree
CreateStreamOnHGlobal
CoUninitialize
CoInitialize
CoTaskMemAlloc

shell32

ShellExecuteA

winmm

PlaySoundA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ