38cace588e25337e90c9e05896df1786 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

38cace588e25337e90c9e05896df1786
Size

132KB
MD5

38cace588e25337e90c9e05896df1786
SHA1

75892ea91af1b8cc35c2dbaa2424f35c88f4b5b1
SHA256

046dc7a88c4844d2a2b36d0f852bbb7e332889a74057401c4eca85d51b54bcc4
SHA512

e03a7a58abf4fb074e6bf57b8ee0e7c8d0d8a59f165e886d5c658a2afec70d55a133976d70d2bda5e94c3ca63e1daf53a907081e3c4111d7baae0658a6a67cf0
SSDEEP

3072:coRdqBIxkb3esvxFaC6ex4YL5O+t2o+rwSHCV:coDkb3esWC6ex4u5OkasSi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38cace588e25337e90c9e05896df1786

Files

38cace588e25337e90c9e05896df1786
.exe windows:4 windows x86 arch:x86

a9e193d02ac50b761d0e69400ee43acd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLongPathNameA
CreateThread
VerifyVersionInfoA
GetCommState
TryEnterCriticalSection
lstrcpyA
DosDateTimeToFileTime
LockFile
SetConsoleMode
GlobalHandle
DeleteCriticalSection
WaitForSingleObject
GetConsoleDisplayMode
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

itext
Size: 8KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

text
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ