381fe6a10441800559eb82da1915bf7c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

381fe6a10441800559eb82da1915bf7c
Size

302KB
MD5

381fe6a10441800559eb82da1915bf7c
SHA1

c84e0e32c132e4bbd9835a3e4620b55cd63e2c80
SHA256

02d89efbf6db28fd5d195535ee53a5d5627a3495db7cec49c36725b60884f011
SHA512

27d039ef5db7315a15f03805787da452832a2719215e51ae1ee66b28b553b219963004631078f131d523fbc314850bc43bc0fb36c7c300057b0510fc3711051d
SSDEEP

6144:AUOUNE9vUeQtwJ5oLLnGCVBJu6W4vezZ/Xqz0CGszN5GAIn+2Sohw:AUjQ7QtZbFH72zZqz06fGpnpjw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
381fe6a10441800559eb82da1915bf7c

Files

381fe6a10441800559eb82da1915bf7c
.exe windows:4 windows x86 arch:x86

40c586459acb813caccf9a66e902ddd4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
DeleteFileW
SuspendThread
GetVersion
GetCurrentDirectoryW
EnterCriticalSection
ReadFile
GetEnvironmentVariableW
Sleep
VirtualAlloc
RemoveDirectoryA
CreateFileA
HeapSize
GetModuleHandleA
GetCommandLineW
FindAtomW
GetFileType
IsBadReadPtr
SetLastError
GetFileAttributesA
CloseHandle
SetFileAttributesW
WaitForSingleObject
GetFileTime
SetLastError

cryptui

LocalEnrollNoDS
CryptUIWizBuildCTL
CryptUIWizExport
CryptUIDlgViewContext
CryptUIDlgFreeCAContext
DllUnregisterServer
CryptUIWizImport
CryptUIDlgSelectStoreA
CryptUIDlgFreeCAContext
CryptUIWizDigitalSign
LocalEnroll
DllRegisterServer
CryptUIDlgFreeCAContext

cmpbk32

PhoneBookFreeFilter
PhoneBookFreeFilter
PhoneBookFreeFilter
PhoneBookFreeFilter

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 295KB - Virtual size: 294KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ