1b356fe1a4c2d58f38a49b2a1b5780e9c450a96291ed02c5b5600dec4f2a1f8a | Triage

Sharing

General

Target

1b356fe1a4c2d58f38a49b2a1b5780e9c450a96291ed02c5b5600dec4f2a1f8a
Size

63KB
MD5

ed6ed99859cdfbc36c13d9fcd9f44bdd
SHA1

a92c27713902e2e84992421c309728fc52fa9bc6
SHA256

1b356fe1a4c2d58f38a49b2a1b5780e9c450a96291ed02c5b5600dec4f2a1f8a
SHA512

3c3321e896416cb5f4904787e1fea272a892f036b4c56237dae3f4e7bf03bbb97b634719d4351adb2450706ce9df18e1b7702db9b1c1b1c9adeb112972cf4ff3
SSDEEP

768:1gppKFDevoOTv2j2ezkv6ouYZuHMrlNJ3FvtwZWWcZ5GFHpzcQaJEhGxuB/u5dd:ahdi4xuRHMx16KZ5WH9bhP/ujd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1b356fe1a4c2d58f38a49b2a1b5780e9c450a96291ed02c5b5600dec4f2a1f8a

Files

1b356fe1a4c2d58f38a49b2a1b5780e9c450a96291ed02c5b5600dec4f2a1f8a
.exe windows:5 windows x86 arch:x86

638b2cb2071c72d91c1c10b89a59ec02

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndPaint
IsWindowVisible
FindWindowA
GetDC
FindWindowW
GetSystemMetrics
BeginPaint

kernel32

OutputDebugStringA
VirtualAlloc
CreateEventW
GetLastError

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 360B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 408B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ