2a8aa36c5cd2a0a0fec230a57eddfe65 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2a8aa36c5cd2a0a0fec230a57eddfe65
Size

269KB
MD5

2a8aa36c5cd2a0a0fec230a57eddfe65
SHA1

4262d966351006853f4207e63ed1b5c5ee51a124
SHA256

5ba1a84bde9f7c5f9c5b230520bffd940f8bd6f7eb3c39f5ef4b62fbdebfe886
SHA512

4472ee341ce27ca1460f23fa97d874c1eb0209a9b0f687107da0c937aa0e1c1dbfaeb0b095a2d0050d18715cdfd6b644c8fab236d1b4deaed6b663d8badb8333
SSDEEP

6144:at94jRhPvbjzxjM/4ifV8UykdgBj4Q7TAX9B01WRjDp8ffMY2H9F:az6hLjzxI5fWYgBj4QnAX9BNpgfSj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a8aa36c5cd2a0a0fec230a57eddfe65

Files

2a8aa36c5cd2a0a0fec230a57eddfe65
.exe windows:4 windows x86 arch:x86

aa8e4295bb2f5d1d0def50616ea2aa28

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
GetCurrentProcessId
HeapReAlloc
HeapCreate
HeapDestroy
VirtualQuery
HeapAlloc
GetSystemTimeAsFileTime
IsBadWritePtr
SetLastError
EnumSystemLanguageGroupsW
GetWriteWatch
QueryPerformanceCounter
VirtualFree
TlsAlloc
VirtualAlloc
TlsFree

user32

SetWindowTextA
GetDlgItem
LoadStringA
GetWindow
CreateWindowExA
DestroyIcon
LoadImageA
GetParent

winmm

mciSendCommandA
sndPlaySoundA

oleacc

CreateStdAccessibleObject
AccessibleChildren

msimg32

AlphaBlend
TransparentBlt

ole32

ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

Sections

.text
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 197KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ