35c24a4b320f783ac52714e0a9a9e7fb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

35c24a4b320f783ac52714e0a9a9e7fb
Size

22KB
MD5

35c24a4b320f783ac52714e0a9a9e7fb
SHA1

f60bf4660f255b0de2290e975253031938867887
SHA256

44f68dc98b00fd0ddc68f6260680d006318981e078f9b320966115e4e609ecbc
SHA512

b7bd733401aed7fdf009a2ad24eb49744f1c6808c9db8a96cf2654969a9fda035e53586328497816b2884074a187f1ebfb07a7ced40939157f1c62e4d2e546e5
SSDEEP

192:UWrfm26mZhR+NnPg8EceUHrrrfsal+NHNNEDO6PKOAkJOVn8LkTOdKGFJ6KpmMgU:6JKC5QU7+mC6VNwUK4AKkMWzVw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
35c24a4b320f783ac52714e0a9a9e7fb

Files

35c24a4b320f783ac52714e0a9a9e7fb
.exe windows:5 windows x86 arch:x86

5539e1e28fa742f053774d6175cbd7b8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Beep
CreateDirectoryA
IsBadWritePtr
GetFileType
GetFileAttributesW
HeapFree
ExitThread
WaitForMultipleObjects
FindClose
lstrlenW
GetCommandLineA
HeapCreate
GetCurrentThreadId
CreatePipe
GetModuleFileNameA
GetCurrentDirectoryW
GetStdHandle
WriteFile
GetDriveTypeA
GetStdHandle
GlobalSize
CancelIo
CloseHandle
CreateSemaphoreA
GetModuleHandleA

uxtheme

CloseThemeData
SetWindowTheme
DrawThemeBackground
GetThemeTextMetrics
GetThemeSysSize
GetThemeTextExtent
GetWindowTheme
GetThemeColor
OpenThemeData
IsThemeActive
GetThemeBool
DrawThemeEdge
CloseThemeData

iaspolcy

DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE