dd5640ad4184be20d2321e8fdf60d1c3 | Triage

Sharing

General

Target

dd5640ad4184be20d2321e8fdf60d1c3
Size

93KB
MD5

dd5640ad4184be20d2321e8fdf60d1c3
SHA1

c7d881c0816b7e7106c52e828e9e5437af3fc6d3
SHA256

3368b5596baaf4af831e539c8778a4e84e281f73c4592d40bc59ba00bbe74b05
SHA512

ba459237ade8f537f6c1f0bebb6e7348648c6dab11efa257cf39356a3672955763863478b93c9f6e476eefdb5b6355b74edc096397afbb0240fe086adb78f1a3
SSDEEP

1536:D9oIIhzqFviji2xvkU/kGxZSeT7sN0+xwrlCwXV+Cxmo3TzvIO:iIICs5dxZTHapxwhCwcK1Pp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs
Checks for missing Authenticode signature.

Processes:

resource

dd5640ad4184be20d2321e8fdf60d1c3

Files

dd5640ad4184be20d2321e8fdf60d1c3
.exe windows:5 windows x86 arch:x86

9fb0e8fb02544422ac39454e3db7abc7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowTextA
LoadIconA
LoadCursorA
EnableScrollBar
GetClipboardOwner
IsDlgButtonChecked
GetWindowLongA
RegisterClassExA
BeginPaint
CheckDlgButton
EndPaint
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

GetStockObject
SetBkMode
CreatePatternBrush
DeleteObject
CreateBrushIndirect
PolyBezier

ole32

OleSetContainedObject
StgIsStorageFile
CoUnmarshalHresult
CoGetObjectContext
CoWaitForMultipleHandles

oleaut32

SafeArrayAllocDescriptor
SafeArrayDestroyDescriptor

kernel32

GetFileAttributesA
HeapFree
QueryPerformanceCounter
GetACP
HeapDestroy
EnterCriticalSection
InitializeCriticalSection
HeapAlloc
HeapCreate
GetModuleHandleA
DeleteCriticalSection
LeaveCriticalSection
GetStartupInfoA
GetCommandLineA
InterlockedDecrement
GetLastError

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE