d637a6f69f469ba4ce6b64d1adf07144 | Triage

Sharing

General

Target

d637a6f69f469ba4ce6b64d1adf07144
Size

198KB
MD5

d637a6f69f469ba4ce6b64d1adf07144
SHA1

883261fa4a37ef2939d96f9e04dc6cac1945e152
SHA256

e3051c02057e9568eae0612c3bc39344830e375e054f1f274808e0967cdec0c9
SHA512

56f78712f9b310e9f4015cafba2b1135688d408b38386d3ca2afad3d3ca3e5d01374e17228d7ed1f162c58f262113c9111d48e1ae8fe77b4983d923ee9d7c870
SSDEEP

1536:EmXAnUkyN6Bh3XOcQ1pJvHBX5QS1p35P/E4XBs7IIJRtypk4AgxLjanMbog+VcD1:EhaUVQ1bHh54RIIlYXA6m95i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d637a6f69f469ba4ce6b64d1adf07144

Files

d637a6f69f469ba4ce6b64d1adf07144
.exe windows:4 windows x86 arch:x86

ca2c7d8cab3a3442f45335dd46c0aaa0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
DeleteFileW
ExitProcess
GetDateFormatA
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetTickCount
IsDebuggerPresent
LoadLibraryA
SetEnvironmentVariableA
SetUnhandledExceptionFilter
VirtualAlloc
VirtualFree
lstrlenA

user32

DestroyMenu
DispatchMessageA
EnableWindow
GetDlgItem
GetFocus
IsWindow
SendMessageA

gdi32

CreateDIBSection
GetBitmapBits
GetBrushOrgEx
GetDCOrgEx
GetDIBits
GetTextExtentPointA
RestoreDC
SetBkColor
SetMapMode

shell32

ExtractAssociatedIconW
ExtractIconA
SHCreateDirectoryExW
SHGetFileInfo
SHGetMalloc
ShellExecuteEx
ShellExecuteW
Shell_NotifyIconW

Sections

.text
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.erdata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE