3e46bdbfda4fc37e4bfaebe89da1b0cb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3e46bdbfda4fc37e4bfaebe89da1b0cb
Size

89KB
MD5

3e46bdbfda4fc37e4bfaebe89da1b0cb
SHA1

89aaf8e35c8556d90cccaf3d4ef95683a29b5a85
SHA256

d00d22d8b12b9215fc477abcdfef34eec9cdf32948b0e941707b8eccb279bda1
SHA512

987c8f8f4c14aa0fa4407f1fbbf9d0c7f77b483baa89aa5ed6cbda8fa4c1fe62a7cb9b60eac54d70476e7b31ea1f073e564430be5dac5ffb31ff07092b02f877
SSDEEP

1536:axLFSkxDLNupA+Mf0LmTGMPQx+Px6RtRlCoFp7lKhI3FnRcHk/:RklLNxjFqMPNPx6rCgp7mI3Fn6E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3e46bdbfda4fc37e4bfaebe89da1b0cb

Files

3e46bdbfda4fc37e4bfaebe89da1b0cb
.exe windows:4 windows x86 arch:x86

8db1c9144b75fe7288a72f95d10ab791

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetVersion
GetTickCount
Sleep
GetCommandLineA
CloseHandle
LocalFree
LocalAlloc
GetVersionExA

gdi32

GetDeviceCaps
PatBlt
GetObjectA
CreateCompatibleDC
DeleteObject
CreateFontIndirectA
GetTextMetricsA
BitBlt
CreateSolidBrush
SelectObject

user32

GetMessageA
ShowWindow
BeginPaint
ScreenToClient
CreateWindowExA
GetWindowRect
MessageBoxA
EndPaint
GetClientRect
TranslateMessage
SetWindowTextA

msvcrt

toupper
__set_app_type
_acmdln
__getmainargs
memmove
wcslen
wcstoul
_adjust_fdiv
_exit
wcschr
exit

Sections

.text
Size: 512B - Virtual size: 486B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 83KB - Virtual size: 255KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ