3360ac2ba04baf232e90579576c516ca | Triage

Sharing

General

Target

3360ac2ba04baf232e90579576c516ca
Size

175KB
MD5

3360ac2ba04baf232e90579576c516ca
SHA1

4ce5db98d6ddb78c521d37afe268550b433d4470
SHA256

6180464e51e0746cd11f378a3a58b89ca1037723e4675e0401a40eebc1081f25
SHA512

775a36b86616a4263caa6a70a5be9cf78660ddaddfc777bf06f21e20c3c90bc29e69f3c411d3868c8b80d818601e6ec6f3f3030a9455fc1adef2ee9cafb9882e
SSDEEP

3072:QHrxrhgLydo1Ni+VyeZFxLR6CVd5WV+uiGIrF3MsSxWTL80:KtCGypFxRTD5WIxGmF8NA/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3360ac2ba04baf232e90579576c516ca

Files

3360ac2ba04baf232e90579576c516ca
.exe windows:4 windows x86 arch:x86

64539b51668d77fec331c82ab074bb0d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
CreateFileW
CreateMutexA
EnumCalendarInfoA
GetFileSize
GetModuleHandleW
GlobalAlloc
IsBadWritePtr
IsValidCodePage
LockResource
SetCurrentDirectoryA
SetEnvironmentVariableA
TlsAlloc
VirtualAlloc
lstrcatA
lstrcmpiW

user32

CreatePopupMenu
DestroyWindow
DispatchMessageA
DrawTextA
GetActiveWindow
GetClientRect
GetWindowLongA
IsIconic
IsWindowVisible
LoadBitmapA
PostMessageA
SetWindowLongA
SetWindowPos
UnregisterClassA

gdi32

DeleteDC
GetWindowExtEx
OffsetViewportOrgEx
PtVisible
SetTextAlign

shell32

DragAcceptFiles
SHCreateDirectoryExA

comctl32

CreatePropertySheetPageW
DestroyPropertySheetPage
ImageList_AddMasked
ImageList_DragShowNolock
ImageList_Draw
ImageList_Replace
ImageList_Write
InitializeFlatSB

Sections

.text
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ