f69c01f918a8b9294882fc8ac4e5724d4061aef03e7d1759201b9df202298808 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f69c01f918a8b9294882fc8ac4e5724d4061aef03e7d1759201b9df202298808
Size

37KB
MD5

eb8053369136bd6df367c5227f99dec3
SHA1

36eb24fcd1d7af26e0cc37a1e50e5bd527f3bfc2
SHA256

f69c01f918a8b9294882fc8ac4e5724d4061aef03e7d1759201b9df202298808
SHA512

2e5b582a9bba11bedb610014b58d46ffeb3d710f7e81f348ed1ed2a108545bb23fa765696f714c0e546daf58046da13a4171421e837ac9c508d342126c3cb4ac
SSDEEP

384:FI5ylOZp5kCUasQwPPSjHpRBuY4/9YD46FTN3W/A:G5ylOZGasIzp2l9QTNGo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f69c01f918a8b9294882fc8ac4e5724d4061aef03e7d1759201b9df202298808

Files

f69c01f918a8b9294882fc8ac4e5724d4061aef03e7d1759201b9df202298808
.exe windows:4 windows x86 arch:x86

edad01f06f3862066717a98cd86e4b97

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

RtlZeroMemory
lstrlenA
lstrcatA
GetVolumeInformationA
GetWindowsDirectoryA
ExitProcess
GetModuleHandleA

advapi32

RegSetValueExA
RegCloseKey
RegCreateKeyExA

user32

EndDialog
SendMessageA
LoadIconA
DialogBoxParamA
wsprintfA
SetDlgItemTextA
CharLowerBuffA

comctl32

InitCommonControls

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 504B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ