153acf8eff9daa042830f7c0ae7a3e3b | Triage

Sharing

General

Target

153acf8eff9daa042830f7c0ae7a3e3b
Size

451KB
MD5

153acf8eff9daa042830f7c0ae7a3e3b
SHA1

5f5c9d1c635d2cd99d8e53478e6c9d940842bf0a
SHA256

5bbbbc13fe20082dc0b426b7021e1b6c6dd7325937be57c93d6a5bb26fef6d15
SHA512

29f5d919ff0f48d3781d47ef971b56bbced843adb4f295293b9385376095a42912aa08969a0b1e1a69a3facbc220d968248920250e66e3f00f043277275834d0
SSDEEP

12288:gT5jKwdk//psFei2YAb2gtCHGNE2Qy1/yjzdqBbHCE7:65j+XpsFj2YmomNv4qbiE7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
153acf8eff9daa042830f7c0ae7a3e3b

Files

153acf8eff9daa042830f7c0ae7a3e3b
.exe windows:5 windows x86 arch:x86

3626605d1e755e110824e482ce76f6ca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetDriveTypeA
GetCommandLineA
GetFileAttributesA
GetModuleFileNameA
CreateSemaphoreA
IsBadReadPtr
FindVolumeClose
lstrlenA
FindClose
HeapCreate
FindVolumeClose
WriteFile
WaitForMultipleObjects
CloseHandle
VirtualQuery
GetProcessHeap
ExitThread
CreateDirectoryA
GetFileType
GetCurrentDirectoryW
LocalSize
HeapFree
CancelIo
GetFileTime

uxtheme

CloseThemeData
GetThemeEnumValue
DrawThemeBackground
GetThemeTextExtent
CloseThemeData
GetThemeTextMetrics
SetWindowTheme
OpenThemeData
GetWindowTheme
IsThemeActive
GetThemeColor
GetThemeBool
DrawThemeEdge

fmifs

Extend
Extend
Extend
Extend

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 604KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 443KB - Virtual size: 443KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE