031c9921f761fa666df4da7fdec6523e69177adebe390905f570a46d4f505710N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

031c9921f761fa666df4da7fdec6523e69177adebe390905f570a46d4f505710N
Size

222KB
MD5

f791c3f447ab401e895f171f8de8cdc0
SHA1

c8603fa0ede8e5cc12783eefb4493ed3d85de582
SHA256

031c9921f761fa666df4da7fdec6523e69177adebe390905f570a46d4f505710
SHA512

52dc9b61bc519c7bd6097d7df0de8d0bdeb6dc27452a78edb4f40444b68e129677b84b532e8fdc7041e9d27d485b9fe5633c590185f0d409bbec7c171cb7702d
SSDEEP

6144:UF42OEmFcP8uOTTEW76w7DrmQnMNPneiZoWTIPau:UDBmMO37r3MAiZo3Pa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
031c9921f761fa666df4da7fdec6523e69177adebe390905f570a46d4f505710N

Files

031c9921f761fa666df4da7fdec6523e69177adebe390905f570a46d4f505710N
.exe windows:4 windows x86 arch:x86

b1ca1985fcae11433517cd324375df60

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

version

VerQueryValueA

gdi32

UnrealizeObject

ole32

CreateStreamOnHGlobal

comctl32

ImageList_SetIconSize

shell32

ExtractIconA

wininet

InternetSetOptionA

Sections

CODE
Size: 207KB - Virtual size: 628KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE