3eefbfb935da24d89b12c18222960595 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3eefbfb935da24d89b12c18222960595
Size

800KB
MD5

3eefbfb935da24d89b12c18222960595
SHA1

55d8b8b98c604c66d0d6d94fbc46c7ad5ccb2f12
SHA256

39df0b2f90d2f097328afa8f159cf6a0ef9b5b22ecb75e052fd7f1154dae1104
SHA512

7574b9e08699e0c9abcfff589a7441012131e551cb0894abc447037f6220efcad6746851d09d77490401cab642cd757e07e70185362e307d6228fee8dc5ee975
SSDEEP

24576:zFGi3H2Xdbq+sflf/N8rbYix4YDCv/J4Qp:J33XzfJLiGYC/Ga

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3eefbfb935da24d89b12c18222960595

Files

3eefbfb935da24d89b12c18222960595
.exe windows:4 windows x86 arch:x86

d5ab89842544d6ecf851993166ade206

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetComputerNameA
PulseEvent
LocalFree
CreateThread
HeapCreate
lstrlenA
Sleep
GetCurrentDirectoryA
GlobalUnlock
ResetEvent
GetSystemTime
FindClose
UnmapViewOfFile
CreateFileW
GetCommandLineW
lstrcpyA
GetCurrentProcessId
LoadLibraryW
GetModuleHandleA

user32

GetCaretPos
GetDlgItem
SetFocus
GetDC
CheckRadioButton
DrawMenuBar
DispatchMessageA
DrawEdge
CreateWindowExA
IsWindow
FillRect
CreateIcon
CallWindowProcA

cryptui

CryptUIDlgSelectCA
WizardFree
CryptUIDlgSelectStoreA
LocalEnroll
CryptUIDlgCertMgr

appwiz.cpl

ConfigStartMenu

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 793KB - Virtual size: 796KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE