309af7e257ed6107a4a5222740d908692ec1a32fe076e264051877b44771140b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

309af7e257ed6107a4a5222740d908692ec1a32fe076e264051877b44771140b
Size

25KB
MD5

1fe809db2251dda3be1f6d3c629e82ee
SHA1

3b6da8683d7ba5849cb261b69dd365d6510a1be8
SHA256

309af7e257ed6107a4a5222740d908692ec1a32fe076e264051877b44771140b
SHA512

5259073a9f68e8bd2b844d3f264c3fe110ba1d4c5c1aa0d672c57089e50178b2f1438f743c594d80a766b4c8afbbd0c21f1d22a2de7043229336a31b66908597
SSDEEP

384:+7ZfapsmVHgRK/rJ1OetA8gA49lBrenVyG+txHBtNsmSJJEFkZxNJ:OpgTARK/rRggVGhBRAEyZxT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
309af7e257ed6107a4a5222740d908692ec1a32fe076e264051877b44771140b

Files

309af7e257ed6107a4a5222740d908692ec1a32fe076e264051877b44771140b
.exe windows:4 windows x86 arch:x86

5bdbfadc30986867f14f8da3f77b42ab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndDialog
SendMessageW
DialogBoxIndirectParamW
ClientToScreen
wsprintfW
MessageBoxW
GetDlgItem
MessageBoxA

kernel32

ExitProcess
GetFileSize
CreateFileW
CloseHandle

gdi32

LineTo
TextOutA
MoveToEx

comctl32

InitCommonControlsEx

shell32

DragFinish
DragQueryFileA
DragQueryPoint

wintrust

WinVerifyTrust

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 996B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ