6c3a161c21170a04cd2aab50eb4391c4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6c3a161c21170a04cd2aab50eb4391c4
Size

815KB
MD5

6c3a161c21170a04cd2aab50eb4391c4
SHA1

6bf075bea1a19cce9087fb6e830563c13689e91a
SHA256

37bb0aea8ac8603b78171e56fd1aec4b06f7ea1883c68d89c18ad74c8277f378
SHA512

2fd3850f402e21ae2e08516b75a511ba162c630510d1b4af4a023cb94661f9c39cedb222bff074098ce20a55275e02b82bc53b610ea4b6e6d1cc20a046553c21
SSDEEP

12288:Kwk1JJysf+XmoqvRsZiQtlKaR7vz3f1YRAfme8u2U5wyaCKh9/92eQHxfI4AS6:e5+ZqZQtlKW7v7yI8uF4CKh9/CRQ4Af

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6c3a161c21170a04cd2aab50eb4391c4

Files

6c3a161c21170a04cd2aab50eb4391c4
.exe windows:4 windows x86 arch:x86

43ae49671534601c08287fa7ffae3831

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnmapViewOfFile
TlsGetValue
LoadLibraryExW
GetACP
LocalFree
CreateFileA
SetLastError
HeapDestroy
CreateMutexA
ExitProcess
FreeEnvironmentStringsA
MapViewOfFile
GetModuleHandleA
HeapCreate
FindAtomA
lstrlenA
GetLastError
GlobalUnlock
SetupComm
FindClose

user32

FillRect
CheckRadioButton
CallWindowProcA
GetIconInfo
DrawEdge
CopyRect
DefWindowProcW
IsWindow
DispatchMessageA
DrawMenuBar
GetFocus
GetDlgItem
GetDC
MessageBoxA

uxtheme

DrawThemeIcon
DrawThemeText
GetThemeRect
DrawThemeEdge
GetThemeSysInt

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ