35849fef7a340cfb23aecb9495ca9c2d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

35849fef7a340cfb23aecb9495ca9c2d
Size

169KB
MD5

35849fef7a340cfb23aecb9495ca9c2d
SHA1

897375c40fa80163920629445490ffb166d289a9
SHA256

f005d9187365bcbb07217c3c6882766a2904bca49755a60d92436fe848795e3a
SHA512

810e87585e9917e7b01190b9778ff404b88650387930d58323f244ac081ce669a1d5a1a5e9ff2bb1b82507ae99c88c302c09dbd43c2b67212858d89134bb8d9e
SSDEEP

3072:Az/iIgKV0+EIX5hD1gdS6Bud5CSl194v3:AziIgKVfJJ6dSQs5CSlw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
35849fef7a340cfb23aecb9495ca9c2d

Files

35849fef7a340cfb23aecb9495ca9c2d
.exe windows:5 windows x86 arch:x86

38195456ff9311f1dab46ed4486676cc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
ExitProcess
HeapAlloc
DeleteFileA
CopyFileA
CreateDirectoryA

user32

GetScrollPos
LoadMenuA
DialogBoxParamA
EndDialog

advapi32

RegCreateKeyA
RegEnumKeyW
RegLoadKeyA
RegCreateKeyA
RegQueryValueExW
RegDeleteValueA
RegEnumValueW
RegCreateKeyExA
RegCreateKeyA
RegQueryValueA
RegEnumKeyA

Sections

.cfeh
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.hecpm
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cfcf
Size: 119KB - Virtual size: 406KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.flpj
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dacgk
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE