51548f4d37b08c6c1c782df457c5424339c1c52f55a23164fde3bba244154c57N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

51548f4d37b08c6c1c782df457c5424339c1c52f55a23164fde3bba244154c57N
Size

2.5MB
MD5

1f0907e19241b18f5d72eb6f9cad4e60
SHA1

890af0132cd537646511e5f8beb1f0e2628c3a35
SHA256

51548f4d37b08c6c1c782df457c5424339c1c52f55a23164fde3bba244154c57
SHA512

e43a6336b40b2b552f175a6e30de8fdc376b4b3028f8ee1fe972bff13a0c9c161465a2cf1852f8646f2ad5dc18ca1d4f138d166496171e255f4fbee2950b86db
SSDEEP

49152:jayMILjrGasY6DwOBfrnvV7UeWtlOCZJkYgUCZrQ:jJMILCYiwOBpIeWr5+Yg/E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
51548f4d37b08c6c1c782df457c5424339c1c52f55a23164fde3bba244154c57N

Files

51548f4d37b08c6c1c782df457c5424339c1c52f55a23164fde3bba244154c57N
.exe windows:4 windows x86 arch:x86

11da5cca76dce3b726c8bc1a82bb88ef

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

MessageBoxA

advapi32

RegOpenKeyExA

comctl32

InitCommonControls

shell32

ShellAboutA

mscoree

_CorExeMain

Sections

.reloc
Size: - Virtual size: 416KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ctors
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 67KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE