3329d49a9286e8abb91cd99bcdec27af | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3329d49a9286e8abb91cd99bcdec27af
Size

19KB
MD5

3329d49a9286e8abb91cd99bcdec27af
SHA1

6056e4e551897a84b60572f4c553312c7bcebb36
SHA256

7bf26732557e43246e9125783aacaaba46b40768df400d4c3342649f24b6e9a7
SHA512

fdd0bae2f1dcbd018a28cd873120886b8ada68399b138a8ada22a3591214594816f344763e46f23d93182f3bda88c945ba3d3350cbe9fab6bbd11e7d3627cb4e
SSDEEP

384:xV/AlwZ5gWByR44BCK7lB/JBYGDl31qzD4n/mUEv:xVY05gWB8jCc/flsBUEv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3329d49a9286e8abb91cd99bcdec27af

Files

3329d49a9286e8abb91cd99bcdec27af
.exe windows:4 windows x86 arch:x86

6a38774d10761d6e35a04434957ab010

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleFileNameA
lstrcatA
LoadLibraryA
CreateMutexA
GetLastError
lstrcpyA
GetModuleHandleA
ExitProcess
lstrcmpiA
lstrlenA
DeleteFileA

user32

RegisterHotKey
SetMenuItemBitmaps
TrackPopupMenuEx
GetCursorPos
DefWindowProcA
SetForegroundWindow
CheckMenuItem
PostMessageA
UnregisterHotKey
PostQuitMessage
EndDialog
GetDlgCtrlID
GetSysColor
LoadBitmapA
GetDlgItem
SendDlgItemMessageA
GetMessageA
TranslateMessage
DispatchMessageA
LoadCursorA
RegisterClassExA
CreateWindowExA
MessageBoxA
SetMenuDefaultItem
LoadMenuA
GetSubMenu
LoadIconA
SetClassLongA
DialogBoxParamA
DestroyWindow

gdi32

SetTextColor
CreateFontA
CreateBrushIndirect
SetBkColor

advapi32

RegCloseKey
RegDeleteValueA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA

shell32

ShellExecuteA
Shell_NotifyIconA

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ