3554206cae319d756dfb52f657e20d44 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3554206cae319d756dfb52f657e20d44
Size

151KB
MD5

3554206cae319d756dfb52f657e20d44
SHA1

1f1c6798a9442b8c78d55d67df6f2b6e039312cb
SHA256

584f42c54ab7a6c9aeef02c4679e30e676fd68e2a6da692fdb6afbcaaa646630
SHA512

10aee889f55145cd1dc2da69b54933bbafd249ae8fd105047a814fc2564744acaa7ea2cbebb9901136dde9ad12733100c9d87415b7840aa2dbb99eed68bb280c
SSDEEP

3072:3Luh71sMhvm+fWh+os3CvkC1mpDCywFu27IfE7:IpsMD6+qmpKz7If4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3554206cae319d756dfb52f657e20d44

Files

3554206cae319d756dfb52f657e20d44
.exe windows:5 windows x86 arch:x86

b6c96daac497d4a5c6ac60660104b8dc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCPInfo
ExitProcess

user32

GetDC
GetWindowTextLengthA
DialogBoxParamA
IsWindow

advapi32

RegDeleteKeyA
RegCreateKeyW
RegEnumValueW
RegOpenKeyW

Sections

.niep
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.nemh
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.floic
Size: 116KB - Virtual size: 431KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jmega
Size: 512B - Virtual size: 375B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ