df3611e5e9025179b40cc3f1f739b899 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

df3611e5e9025179b40cc3f1f739b899
Size

701KB
MD5

df3611e5e9025179b40cc3f1f739b899
SHA1

fa008c4b8f37ffeec04b16246e8e1b8bcb624582
SHA256

cb60a5e2144f903a738d7d5056c0b77ef791bd2f9691ab8d8899410e54ad792d
SHA512

16aa33ede3776606538b64a927917caa05eec7aaa8179864b10bb44fae084986726c7deb2bb4ccdd9d775a603a2cce5fa81239d824294887980cdcda70a004a5
SSDEEP

12288:oEzMqjmwUYpln3WefiHtFGj/oE/eH4l+rF:ocZBzizGkse4sF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
df3611e5e9025179b40cc3f1f739b899

Files

df3611e5e9025179b40cc3f1f739b899
.exe windows:4 windows x86 arch:x86

f05b3e6f6d63dc8b07cb8b86a6a938dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetVersion
GlobalFree
Sleep
GetModuleHandleA
FreeLibrary
GetTickCount
GlobalAlloc

gdi32

GetStockObject
GetTextExtentPoint32A
ExtTextOutA
MoveToEx
DeleteObject
LineTo
CreateSolidBrush
SetPixel
SelectObject
GetPixel
SetROP2
CreateCompatibleDC
GetTextMetricsA
GetTextColor
CreateFontIndirectA
BitBlt
GetDeviceCaps
GetBkColor
GetObjectA

msvcrt

_controlfp
__setusermatherr
_acmdln
wcslen
__getmainargs
_initterm
rand
toupper
_exit

user32

EndDialog
GetMessageA
GetSysColor
ShowWindow
DialogBoxParamA
SetFocus
MessageBoxA
LoadIconA
GetFocus
DestroyWindow

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 679KB - Virtual size: 680KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 724KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ