256f3d688bb33ea7e9faf8c2a767d130 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

256f3d688bb33ea7e9faf8c2a767d130
Size

43KB
MD5

256f3d688bb33ea7e9faf8c2a767d130
SHA1

68cdf3fe188bbe7dea95d885e32459920c4239dc
SHA256

2119a50c573fafcc069e39802164617816b5e6688144362b3f0b43bf9c4538bf
SHA512

334bc0252d38e69c2c560363e464f6214ca6b9c95f79c1191011cd252b1bbfdfb8f1b41a8514da3b1d9f43fabf5d398799a9bd232329b48dd59120bcf7a2ddd9
SSDEEP

768:I+niBcaCP9sVgtbjXeZ+6acIutbnwfIQiCkReYqktp1u6mG1r262326F:KBcaCP9sikZ+cIob02pqCp1u6mw2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
256f3d688bb33ea7e9faf8c2a767d130

Files

256f3d688bb33ea7e9faf8c2a767d130
.exe windows:5 windows x86 arch:x86

35c3b1c8a72aef2180268c1043fa618c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
FindClose
EnterCriticalSection
SetEvent
GetModuleHandleA
lstrcmpiA
GetTempPathW
GetSystemTimeAsFileTime
CreateEventW
CreateFileMappingW
ExpandEnvironmentStringsW
MultiByteToWideChar
CreateMutexW
CloseHandle
GlobalLock
SetLastError
SetEndOfFile
HeapAlloc
WriteFile
SetFileAttributesW
CreateProcessW
FindFirstFileW
lstrcpynW
CopyFileW
MoveFileExW
GetTimeZoneInformation
DisconnectNamedPipe
GetModuleFileNameA
UnmapViewOfFile
GetUserDefaultUILanguage

user32

CloseDesktop
MsgWaitForMultipleObjects
CloseWindowStation

Sections

.binaf
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nmpoh
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.virwt
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ