3da7f61dd46c04e3109909c5bc0bf93c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3da7f61dd46c04e3109909c5bc0bf93c
Size

3.9MB
MD5

3da7f61dd46c04e3109909c5bc0bf93c
SHA1

746fdc5377edd23fddb84420f614084b0a938ae3
SHA256

e7ce1a994b9cd0134f2c41fad274c28d76cd57a42e9373ea716e25997c1e7cae
SHA512

049ea58b5028efe3a9bbaf6a3e29d1a83663cf932a32fe5e25086f26979eeeb68333c097a40b1ce2d6f19b7722b2cee3cc3f8702ca0eefcd5da823b8b555377c
SSDEEP

49152:IUDjwieLbTrsOpyA1+vwGRD++S09K1LIWFBRZ8H7CEnbFV07/UDZ7Ay5zeJV/wYL:IUoieHsJ1hS0QWWFZ8bCE3Y/41An5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3da7f61dd46c04e3109909c5bc0bf93c

Files

3da7f61dd46c04e3109909c5bc0bf93c
.exe windows:5 windows x86 arch:x86

3065b35758b207e9aea2ef1034f8a8a2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
GetVolumePathNameA
CloseHandle
GetNumberOfConsoleMouseButtons
SetConsoleOutputCP
OpenMutexA
HeapCreate
GetPrivateProfileStringA
SizeofResource
SetVolumeMountPointA
VirtualAllocEx
EnumResourceNamesA
LZCloseFile
SetConsoleMaximumWindowSize
TransmitCommChar
IsBadCodePtr
GetConsoleCP
HeapLock
IsWow64Process

advapi32

OpenEncryptedFileRawA

user32

SetMenuDefaultItem
DrawMenuBar
SetDlgItemTextA
GetPriorityClipboardFormat
SetLayeredWindowAttributes
PostMessageA
IsZoomed
CreateIconFromResourceEx
CharLowerBuffA
ChildWindowFromPointEx
IsHungAppWindow
ReuseDDElParam
GetMouseMovePointsEx
GetDCEx
CreateIconFromResourceEx
LoadMenuIndirectA
RegisterWindowMessageA
GetWindowTextA

Sections

.text
Size: 3.8MB - Virtual size: 7.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ