333db0596c54d1e7c9b6d892c96a8722 | Triage

Sharing

General

Target

333db0596c54d1e7c9b6d892c96a8722
Size

747KB
MD5

333db0596c54d1e7c9b6d892c96a8722
SHA1

38d6ff8f437baf680588acbd4b6fdfc9c8957098
SHA256

59c137cae057f9110bd4e6944b5bfd2b513e7eea44ffa362ebf670036dbe4017
SHA512

85673b01c6dc5a54d7709730570dbe36f27c9aacd200def9ca1d60c039f43be213594ff53478f348b70b89473b4ec3932d9ab45355d6b0bd0b2a87e49a17fc36
SSDEEP

12288:ddRm8RBB/92+uakVWf5Q5t6DzBRfhroaA2wK/MgMVy3+izUbW1sGhFA/X6:Z/p5XBQ5tC1hr6ry3+iJ1tuP6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
333db0596c54d1e7c9b6d892c96a8722

Files

333db0596c54d1e7c9b6d892c96a8722
.exe windows:5 windows x86 arch:x86

2dd56016b397e0d3b951c7e8172071bb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadReadPtr
WaitForMultipleObjects
GetCurrentDirectoryW
CloseHandle
CancelIo
lstrlenA
ExitThread
GetModuleHandleA
GetCommandLineA
CreateDirectoryA
VirtualQuery
WriteFile
GetModuleFileNameA
GetFileAttributesA
FindVolumeClose
LocalSize
GetTickCount
GetFileType
GetDriveTypeA
FindClose
CreateSemaphoreA
GetFileTime
FindVolumeClose
HeapCreate
HeapFree

uxtheme

GetThemeTextMetrics
IsThemeActive
CloseThemeData
CloseThemeData
GetThemeTextExtent
OpenThemeData
SetWindowTheme
GetThemeColor
GetThemeBool
GetWindowTheme
DrawThemeBackground
DrawThemeEdge
GetThemeEnumValue

fltlib

FilterClose
FilterClose
FilterClose
FilterClose

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 740KB - Virtual size: 739KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE