4a5a1059ac4868847b1c770c08d166a1cefa68168af566c2280fbccd0773934e | Triage

Sharing

General

Target

4a5a1059ac4868847b1c770c08d166a1cefa68168af566c2280fbccd0773934e
Size

473KB
MD5

646842512919c08c056bd8faff7824b3
SHA1

62bc3bbaa209a0df9865cc1e937f18079276b183
SHA256

4a5a1059ac4868847b1c770c08d166a1cefa68168af566c2280fbccd0773934e
SHA512

969c845357eca26673a4911cfde8adec316cf7218a9a9c2c153c1fe543fcb9fe0a80ed5c3306b8086cb290bc198e4945d731678a48179c92cf3c713a7909779a
SSDEEP

6144:ADRIM+SzQZIrIe58wcjn8pu0/+s3zR7NdoM2iHZ4s5E+uRX3UlQ59yMdOhHSsgPH:pdI58wu8IT+RJdvBKsHudUlsExSsg3Y4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4a5a1059ac4868847b1c770c08d166a1cefa68168af566c2280fbccd0773934e

Files

4a5a1059ac4868847b1c770c08d166a1cefa68168af566c2280fbccd0773934e
.exe windows:6 windows x86 arch:x86

4de596e02dfd8f7034d5d76abb88cf98

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

wsprintfW

advapi32

RegCloseKey

comctl32

PropertySheet

Sections

Size: - Virtual size: 296KB

IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 93KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE