0afc13106e03f26da2959779aefa1ea0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0afc13106e03f26da2959779aefa1ea0
Size

1.5MB
MD5

0afc13106e03f26da2959779aefa1ea0
SHA1

a511ae4a806ff8d95b9f48c8c104ce73ff4c5e37
SHA256

c61ccf9c1ee569cd6d656cc297e481b3f8789bf7e3366c2735356a94c439fb23
SHA512

22a96e11905ba77e67bb41b04a213caff4a0f29bd48bde1a2fc8f0c1445543321cb31702bffc677e954316a36b964205cf46da881e871ead3b99b7133702a6be
SSDEEP

49152:Vf6HjKT65wfMqhk5RzjbT18Stdn5Mz1b:Vff5fMm6JL18Sv5s1b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0afc13106e03f26da2959779aefa1ea0

Files

0afc13106e03f26da2959779aefa1ea0
.exe windows:4 windows x86 arch:x86

b6ffb9014d502d1650226318aef9871f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

version

VerQueryValueA

gdi32

UnrealizeObject

ole32

CreateStreamOnHGlobal

comctl32

ImageList_SetIconSize

wininet

InternetGetConnectedState

Sections

CODE
Size: 1.4MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 170KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE