27a61a3f6216c2103c2a706983683332 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

27a61a3f6216c2103c2a706983683332
Size

306KB
MD5

27a61a3f6216c2103c2a706983683332
SHA1

721f26d812c379b7b51f1faa38d5f41a47816c21
SHA256

73e5cbdabbec0765f5e082f6bc174a3d7507ad13c458c295a97bfdf3048b2279
SHA512

ff73eee0361a5021b86c604387d3c9760ee72fcd5d0e842f2b8dbd40b7c65366427c98ecec22f878e39e50a032b9dfd11330ce6bd9e9785309e3da9134fc1d79
SSDEEP

6144:6Afv48T48pxQCI2X3QAvfj4Nb9hTdVyQcxoajv73gSFdCU:hHP4ETCblVyQcmkTgS6U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27a61a3f6216c2103c2a706983683332

Files

27a61a3f6216c2103c2a706983683332
.exe windows:4 windows x86 arch:x86

f74af10536b7d131d583089fc29eb978

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateFileMappingA
CreateMutexA
CreateProcessA
CreateThread
ExitProcess
FreeLibrary
GetPrivateProfileStringA
GetTimeFormatA
GetVersionExW
GlobalAlloc
GlobalFree
LoadLibraryA
ResumeThread
SetErrorMode
Sleep
WaitForSingleObject
WriteConsoleA
lstrcpyA
lstrlenA

user32

CheckDlgButton
DestroyMenu
GetClientRect
GetDC
GetDesktopWindow
GetLastActivePopup
GetMenuItemCount
GetScrollInfo
LoadBitmapW
ModifyMenuW
PostMessageW
SetRect

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 868B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 291KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ