034b6903870d7253a5ab55e6c28c2ce1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

034b6903870d7253a5ab55e6c28c2ce1
Size

462KB
MD5

034b6903870d7253a5ab55e6c28c2ce1
SHA1

10e6ef95ee104dfd3f7d2fbf863c3febcfba77e9
SHA256

c2644b2a829722e9e6ea64617f4c14871350e78f03fffc96ea7b66a2315b6508
SHA512

7122ac95dea5ee9213e55d136e4d965b718781d29e643c1beed638133852d6934028c537df180443dc4bf84fd9e825d8455e01bdbe7af5df05cca09bfd76c33d
SSDEEP

6144:RkcZ2Wd5AwfpzloFyB4oYYCt0A9+gn0/4NkL88dIMac8C9PwkoC1zFxR56Ft:ZdAhyB4z3mwX0/T4zU+C1zF7kv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
034b6903870d7253a5ab55e6c28c2ce1

Files

034b6903870d7253a5ab55e6c28c2ce1
.exe windows:4 windows x86 arch:x86

9e4e446f7e5ed4e310f90af7c75d1e1f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
EnumSystemLocalesA
VirtualAlloc
GetModuleHandleA
VirtualFree
GetProcAddress
LoadLibraryA

user32

MessageBoxA
GetDlgItemTextA

Sections

.text
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 328B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 388KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ