3a3692b3a5006db008c85bb13bf2ebda | Triage

Sharing

General

Target

3a3692b3a5006db008c85bb13bf2ebda
Size

338KB
MD5

3a3692b3a5006db008c85bb13bf2ebda
SHA1

4bb7d0338959762bdf4710be4c59b11dc327a3aa
SHA256

9b8e89314ca04e039a89294536c3848014c0bc3b07fb37ffc198b9dc8e578a44
SHA512

9af7f5868d04ccf0e4d186cbd5f60613e7e3ad5f1193215721fbe63642cb16da2202c2db336dce10d4f936c8a37b496391b068215ca89658d43263a71b3782c8
SSDEEP

6144:3APlFN/NO7Kzwd0gkTAitamsvRIyt+PbiLB0aiZNLBOIMK8/3bgw:wPlFU+wUBsXvRI7aMLIIUUw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a3692b3a5006db008c85bb13bf2ebda

Files

3a3692b3a5006db008c85bb13bf2ebda
.exe windows:4 windows x86 arch:x86

59cab2766da0f1b13794b735ceea6024

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleCP
FreeEnvironmentStringsA
OpenMutexA
ResumeThread
VirtualProtectEx
LocalFree
GetACP
IsBadStringPtrA
FindClose
GetModuleHandleA
GetSystemTime
lstrlenA
LoadLibraryExA
CreateEventA
GetStdHandle
GlobalUnlock
GlobalLock
IsBadReadPtr
CloseHandle
GetLastError

user32

GetMessageA
GetSubMenu
IsMenu
GetMessageA
SetFocus
DialogBoxParamA
CreateWindowExA
RedrawWindow
CheckMenuItem
ClipCursor
GetDlgItemTextA
IsIconic
EndDialog
DrawIconEx

wldap32

ldap_unbind
ldap_compare
cldap_open
ldap_delete
ldap_add

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ