3f0b3fcb6adc04b53c747ddfbb58604c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3f0b3fcb6adc04b53c747ddfbb58604c
Size

21KB
MD5

3f0b3fcb6adc04b53c747ddfbb58604c
SHA1

b4cd806b7e0372420203965efa46ed51ab145fb6
SHA256

9670e88b94198c1da9498e7ee8129afbb27ee3ef19f39e8d8ea75a4c8afe817e
SHA512

42c99ed6de22bfd1594075b3f6cf9f2ebb09b5a98385ca2f9f34134ff1b2ace0541732d85ec6d76248851aa814fae09cabfa8ae20ac90233930613fb93dcfcaf
SSDEEP

384:fjKZ1PvBDlRisI7/ohUvFz20QuxaNgQvBvUrBMtFhc:fjKZ1PvBhRi1gSFz3INxvUey

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f0b3fcb6adc04b53c747ddfbb58604c

Files

3f0b3fcb6adc04b53c747ddfbb58604c
.exe windows:4 windows x86 arch:x86

d2e66e18dea33f50fa6343b049d886a4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
SetErrorMode
GetWindowsDirectoryA
SetCurrentDirectoryA
VirtualProtect
ExitProcess

user32

SetForegroundWindow
GetClassNameA

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.n1sec
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsec
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ