a58fe81aa10628b6f776015ce323d697ff7df887e04a54d42d61fe496f07a283 | Triage

Sharing

General

Target

a58fe81aa10628b6f776015ce323d697ff7df887e04a54d42d61fe496f07a283
Size

28KB
MD5

e4ac95edac2f200de68ff07156a9aa96
SHA1

17e18a2f208464e303f4af2f1b6b0f3f0311abd9
SHA256

a58fe81aa10628b6f776015ce323d697ff7df887e04a54d42d61fe496f07a283
SHA512

c604109e5d1cf48946773915bf0ded2b0dc519e71150cc777d90e061aa2c6348fd25b86360358378ff85b51fcb893af57e4efb51027ecc8fe20e9334b77cbfc8
SSDEEP

384:51G/0strh1ieR5SSlXZQaD7U8iu4YsAa7ZA0UvH2lsRv21yW7GbAxur6+Y9PffPz:C/0cLi8xbQGPL4vzZq2o9W7GsxBbPr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a58fe81aa10628b6f776015ce323d697ff7df887e04a54d42d61fe496f07a283

Files

a58fe81aa10628b6f776015ce323d697ff7df887e04a54d42d61fe496f07a283
.exe windows:4 windows x86 arch:x86

52b98cccfa164238be8cd1c2d2873569

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
UnmapViewOfFile
FlushViewOfFile
SetEndOfFile
SetFilePointer
lstrlenA
lstrcpyA
lstrcatA
CreateFileMappingA
MapViewOfFile
GetModuleHandleA
GetStartupInfoA
CreateFileA
GetFileSize

user32

DefDlgProcA
LoadIconA
EndDialog
DestroyIcon
PostMessageA
SetDlgItemTextA
SendMessageA
GetDlgItem
GetSystemMenu
DeleteMenu
DialogBoxParamA
LoadCursorA
RegisterClassA
MessageBoxA
GetActiveWindow
wsprintfA

comdlg32

GetOpenFileNameA

comctl32

ord17

msvcrt

_controlfp
??3@YAXPAX@Z
_except_handler3
__p__fmode
__p__commode
__set_app_type
__setusermatherr
_adjust_fdiv
_initterm
__getmainargs
_acmdln
_XcptFilter
exit
__CxxFrameHandler
sscanf
_exit

imagehlp

ImageNtHeader

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

�]<ңu�
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE