4fcfe9dccf1f48a5330362cafec046a9ce259798a77cd44fa64d96d935fc7bd5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4fcfe9dccf1f48a5330362cafec046a9ce259798a77cd44fa64d96d935fc7bd5
Size

124KB
MD5

f86f317ddaf455cb5489dac43decfa40
SHA1

b82b07e07d12b7cae699a1651ca5e7073d07bcf3
SHA256

4fcfe9dccf1f48a5330362cafec046a9ce259798a77cd44fa64d96d935fc7bd5
SHA512

92cde052ecfd7e9e0278453a55d79b96d6258d12d0fa0bfb52daa8cf8b81540b1fb11891119df9d7c915bf0fa0efe0ef8820113dd4760382254a13c5cf24961c
SSDEEP

3072:ca1Z+CJWR9CJijwlcLujZMNvX5rDWy071A:ca1ZXJKwyS2hXpS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4fcfe9dccf1f48a5330362cafec046a9ce259798a77cd44fa64d96d935fc7bd5

Files

4fcfe9dccf1f48a5330362cafec046a9ce259798a77cd44fa64d96d935fc7bd5
.exe windows:4 windows x86 arch:x86

834ad9e7ff2034233ef1cfb4f31d5598

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalUnlock
FindClose
UnmapViewOfFile
GetCurrentDirectoryA
GetModuleHandleA
CreateFileW
SetLastError
GetCurrentThreadId
CreateProcessA
CloseHandle
FindResourceW
lstrlenA
GetCommandLineA
lstrcpyA
LocalFree
GetComputerNameA
HeapCreate
Sleep
PulseEvent
LoadLibraryExW

user32

SetFocus
CreateWindowExA
DrawEdge
GetDlgItem
CreateIcon
CheckRadioButton
DispatchMessageA
DrawMenuBar
GetCaretPos
GetDC
CallWindowProcA
IsWindow
FillRect

rsaenh

CPHashData
CPSignHash
CPDecrypt
CPDeriveKey
CPGenKey

msasn1

ASN1BERDecEoid

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 92KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE