35e09d07a57cde50c83b20144d1fa60b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

35e09d07a57cde50c83b20144d1fa60b
Size

751KB
MD5

35e09d07a57cde50c83b20144d1fa60b
SHA1

7d08336ec0158d6da0375d5bfb68b4b8297e8c64
SHA256

ca10d29bc4412cc0754f149ba155aa8e0ea3ad06a18abe145807110358f08003
SHA512

9620b6b7d2263915fe5002c7ab56eb3a519bec2e333386cfb88b979b03aef15383fa5932a60e0f5571c2724fb05f3a030016af8fc37fac48b9b8dbb00e896324
SSDEEP

12288:xKjHCDYFaEx4/r5LrszZSg3inpDg0A+hQeIjfE6rxwVXFVAlaRoEEN1j5P0X0Ezb:x0iVEQ9znpBgfE6KXjAlaRorj5y0EzI7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
35e09d07a57cde50c83b20144d1fa60b

Files

35e09d07a57cde50c83b20144d1fa60b
.exe windows:4 windows x86 arch:x86

66c16b88e8a23219d453f360c9e37647

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
HeapSize
CreateMutexA
GetTickCount
GetEnvironmentVariableW
Sleep
GetStdHandle
CreateFileA
CloseHandle
FindClose
WaitForMultipleObjects
GetCommandLineW
GetStartupInfoW
ResetEvent
CreatePipe
HeapCreate
WaitForSingleObject
GetCurrentDirectoryA
RemoveDirectoryA
GetFileAttributesA
OpenProcess
ExitProcess
GetConsoleTitleA
GetModuleHandleA
DeleteFileA

user32

GetSysColor
GetDC
GetDC
PeekMessageA
GetClassInfoA
GetDC
GetWindowLongA
CallWindowProcW
DispatchMessageW
FindWindowW
MessageBoxA
DispatchMessageW
FillRect

ureg

??1REGISTRY@@UAE@XZ
??1REGISTRY@@UAE@XZ
??1REGISTRY@@UAE@XZ
??1REGISTRY@@UAE@XZ

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 745KB - Virtual size: 745KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ