4b62ee1fe7289d74fedebd1f57c308708d3d30c0cbf002b8f305d81c803bfabe | Triage

Sharing

General

Target

4b62ee1fe7289d74fedebd1f57c308708d3d30c0cbf002b8f305d81c803bfabe
Size

8KB
MD5

17f6a15006b8bdda1df4eb5c2606f6db
SHA1

3c6449d21161f34aa71064836674bdda6ae4d662
SHA256

4b62ee1fe7289d74fedebd1f57c308708d3d30c0cbf002b8f305d81c803bfabe
SHA512

d89025431c43fb886ec5440f3c290ffccd6d1ba1788ee5eda65605144ce5ce6bc4eca2c31bdfee1b0f230287cb0674e19ffa93beba434dab5ddd62c30d9f07d5
SSDEEP

48:6Dse5cT8SHunrWNgDrlBt13ScVQvAPPFKvKvx9StPBwSBP/v2xw/wYYXUQeDjjcZ:48cyQBt13SrAP9KSoCSBXvw7YYqoU0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4b62ee1fe7289d74fedebd1f57c308708d3d30c0cbf002b8f305d81c803bfabe

Files

4b62ee1fe7289d74fedebd1f57c308708d3d30c0cbf002b8f305d81c803bfabe
.exe windows:4 windows x86 arch:x86

1075a4f34a3686e955a65203505418ec

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
SendMessageA
SetDlgItemTextA
GetWindowTextLengthA
SetWindowTextA
GetDlgItemTextA
GetDlgItem
EndDialog
EnableWindow
DialogBoxParamA
SetFocus

kernel32

GetModuleHandleA
lstrlenA
RtlZeroMemory
ExitProcess
CreateThread
CloseHandle

wsock32

WSAAsyncSelect
WSACleanup
WSAGetLastError
WSAStartup
closesocket
connect
htons
inet_addr
recv
send
socket

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 860B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ