47023ccbbbf8a0bd9ddaf1170aed8f642433e2d8bd01264593588edb1a810d52 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

47023ccbbbf8a0bd9ddaf1170aed8f642433e2d8bd01264593588edb1a810d52
Size

16KB
MD5

c4fb5ae6a9d2602821e1610c6d885f57
SHA1

0dfc602e1d839185c507711b2f61f64199d0ed41
SHA256

47023ccbbbf8a0bd9ddaf1170aed8f642433e2d8bd01264593588edb1a810d52
SHA512

f4b35b4a1779433f5ea11e5083524707706aad938a5e7e716309fbe2b93b37766a23463840e561f014c14efb19228759ac45fc790f5390ee67a7fdd3a3fadeb1
SSDEEP

48:aiYMH5jXXuxxYDS/xKDS3KmgFG+rxoFPtboyl1z9FDP0RWB/3U:kMH5X+HkS/xOSO2FPtboynh1BU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
47023ccbbbf8a0bd9ddaf1170aed8f642433e2d8bd01264593588edb1a810d52

Files

47023ccbbbf8a0bd9ddaf1170aed8f642433e2d8bd01264593588edb1a810d52
.exe windows:4 windows x86 arch:x86

4cda5d52c2b2e2d65dd3c447f778c7cb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

qt-mt332

??1QApplication@@UAE@XZ
??1QGArray@@MAE@XZ
??0QApplication@@QAE@AAHPAPAD@Z
??0QString@@QAE@PBD@Z
??0QPushButton@@QAE@ABVQString@@PAVQWidget@@PBD@Z
??1QString@@QAE@XZ
?resize@QPushButton@@UAEXHH@Z
?setMainWidget@QApplication@@UAEXPAVQWidget@@@Z
?show@QWidget@@UAEXXZ
?exec@QApplication@@QAEHXZ
??1QPushButton@@UAE@XZ
?deleteData@QGArray@@MAEXPAUarray_data@1@@Z
?newData@QGArray@@MAEPAUarray_data@1@XZ
?qWinMain@@YAXPAUHINSTANCE__@@0PADHAAHAAV?$QMemArray@PAD@@@Z
??0QGArray@@IAE@H@Z
?duplicate@QGArray@@IAEAAV1@ABV1@@Z

msvcrt

free
strcpy
malloc
_acmdln
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
exit
_XcptFilter
??3@YAXPAX@Z
_exit
strlen

kernel32

GetStartupInfoA
GetModuleHandleA

Sections

.text
Size: 4KB - Virtual size: 772B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE