c822a5a653af7d27cbd663004a49b7cefc724748a0fd7e58d942d2347304d06bN | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c822a5a653af7d27cbd663004a49b7cefc724748a0fd7e58d942d2347304d06bN
Size

110KB
MD5

fbdf0fee33cc75311e1f0247605b87c0
SHA1

3ae53e9d14e3d4b16611e45b569d498bbba717d1
SHA256

c822a5a653af7d27cbd663004a49b7cefc724748a0fd7e58d942d2347304d06b
SHA512

50b059e63f3906c9c8c6e296718848dc838b391445e9b763f48bf94c9c78ab84450468dfbf582af821bae7809f199136a6938beaf787742dd97ddae0529a74eb
SSDEEP

1536:55Cv/VID3HuPTFeZyeJY2GDIcPS0chwokS4mdgFLMSZ6h6EWTApXAYV:55CXVID3OQRYgyS0cSuZgdwpXAY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c822a5a653af7d27cbd663004a49b7cefc724748a0fd7e58d942d2347304d06bN

Files

c822a5a653af7d27cbd663004a49b7cefc724748a0fd7e58d942d2347304d06bN
.exe windows:5 windows x86 arch:x86

0f38f9f15f07da875dad8b4ef551fdb7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

LineTo
CreateCompatibleDC
CreateFontIndirectA
SelectObject
SaveDC
DeleteDC
GetDeviceCaps
GetClipBox
SetTextColor
SetStretchBltMode
GetStockObject
SetMapMode
GetObjectA
DeleteObject
SelectPalette
GetTextMetricsA
RestoreDC
RectVisible
CreateSolidBrush
CreatePalette
GetPixel

kernel32

lstrlenA
lstrcmpiA
CopyFileA
GetWindowsDirectoryA
GetModuleHandleA
GetSystemTime
QueryPerformanceCounter
lstrlenW
lstrcmpA
lstrcmpiW
DeleteFileA
RemoveDirectoryA
GlobalFindAtomA
RemoveDirectoryW
FindClose
GetCommandLineA
VirtualAlloc
VirtualFree

user32

GetDC
GetSystemMetrics
TranslateMessage
GetDesktopWindow
CharNextA
GetParent

glu32

gluNurbsCallback

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ