391aef725e3e651a5ade04c6cd4c31fd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

391aef725e3e651a5ade04c6cd4c31fd
Size

787KB
MD5

391aef725e3e651a5ade04c6cd4c31fd
SHA1

c2d6446a390ba5cfeffd311fbc34322a0a097a4d
SHA256

414abe6de818e1f7c0039bde233a80007ca187d2c860011ebb6782ce96420aec
SHA512

fbd53db9870d2a95cc3849f1c07054a4d05e79552a000919831d06d703e56a55989111119d88d63777841ad31c8f9cde9a6bdca47473990cc0ccc04bc05fc0aa
SSDEEP

24576:KVwvs3vKx6SDdUlVtBc6SrGgaqm9oc5BgkXGvA:KCweTdgBc6zlSKBgkXeA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
391aef725e3e651a5ade04c6cd4c31fd

Files

391aef725e3e651a5ade04c6cd4c31fd
.exe windows:4 windows x86 arch:x86

19c221bad5338670b5676a93e066de90

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
FindResourceA
CreateFileA
TlsGetValue
IsBadStringPtrW
GetModuleHandleA
GlobalUnlock
GlobalFree
ReleaseMutex
HeapCreate
GetEnvironmentVariableA
PulseEvent
FindClose
lstrlen
LoadLibraryW
SetLastError
ExitThread
CreateMutexA
GetACP
DeleteAtom

user32

CopyRect
DrawMenuBar
GetDlgItem
GetIconInfo
IsWindow
CheckRadioButton
DispatchMessageA
CallWindowProcA
FillRect
DefWindowProcW
SetFocus
GetDC
DrawEdge

msasn1

ASN1BERDecNull
ASN1BEREncBool
ASN1BERDecBool
ASN1BEREncEoid
ASN1BERDecCheck

dpnet

DirectPlay8Create

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 778KB - Virtual size: 778KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ