11034d866dfdbc16e5704652fbd01fca | Triage

Sharing

Copy URL Twitter E-mail

General

Target

11034d866dfdbc16e5704652fbd01fca
Size

451KB
MD5

11034d866dfdbc16e5704652fbd01fca
SHA1

be2064d91808f1a8d966c9ebf5701468ba439350
SHA256

bd2c90541910dd99459a26b2232e7e26bd694f464e60ca27c9a82f92f651b23a
SHA512

78cd9ebf62cef134c672f04c1d7b6e013f883c54cc8cd51941c0f6a4de30d1af75a1e40c2b89ef2a5c4093175bce099468496518057d8528c050a727300aebec
SSDEEP

3072:U3OZ8yjAwdiqt+pDFDa2XOzZCilsdqkliY6UzQcxhIBhq5kMH/4mXJLpMqRJ5yw6:reqoRs204PjxhMhqG4Qm5nRryp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
11034d866dfdbc16e5704652fbd01fca

Files

11034d866dfdbc16e5704652fbd01fca
.exe windows:4 windows x86 arch:x86

4a73c4f21967d65cccc2377c03836557

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
_XcptFilter
_exit
strncpy
strcat
memset
_stricmp
srand
rand
exit

kernel32

GetStartupInfoA
lstrlenA
CreateDirectoryA
GetFileSize
GetBinaryTypeA
GetTickCount
GlobalAlloc
WriteFile
GetModuleHandleA
GetModuleFileNameA
GetSystemDirectoryA
GetWindowsDirectoryA
Sleep
CopyFileA
CreateFileA
SetFilePointer
CreateProcessA
SetFileAttributesA
CloseHandle
SetEndOfFile

user32

PeekMessageA
wsprintfA

advapi32

RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegCloseKey

Sections

.data
Size: 238KB - Virtual size: 238KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ