3934fd31c64c8afbe71a43233b47eb17 | Triage

Sharing

General

Target

3934fd31c64c8afbe71a43233b47eb17
Size

198KB
MD5

3934fd31c64c8afbe71a43233b47eb17
SHA1

f14092f7d06fb6ed65984a28edc14de594edb24a
SHA256

bc10023eac85df332c61ed0925b925201ec7a0e5e22ea2157f2403a2a443f6d7
SHA512

2c12ddc3c0a154e098afe603deb667b2e04843118cb233f158a961c00f7432d051a4ee73452c53b12e828cf4dfccf1a612407356a74704b3ed4bb075306c1645
SSDEEP

3072:/HfNmIn6LCyUOKbWCtyZIDcXaOTsmVG34lp9/FM5FQLGvR2venZ6hym:/Hf8CcCf5tmIDcXL5a479/G1vR2Gm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3934fd31c64c8afbe71a43233b47eb17

Files

3934fd31c64c8afbe71a43233b47eb17
.exe windows:4 windows x86 arch:x86

c7cf77a7f92c3b956ce48c5e79dba6f1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPriorityClass
ReadConsoleOutputW
ReadConsoleInputW
GetVolumePathNameA
GetProcessPriorityBoost

user32

GrayStringA
ValidateRgn
LoadBitmapW
ReleaseDC

gdi32

SetTextColor
SetROP2
SetLayout
SetDCPenColor
SelectClipPath
PaintRgn
StrokeAndFillPath
GetRandomRgn
GetPixel
EnumObjects
DrawEscape
CreatePatternBrush
CreateCompatibleBitmap
GetSystemPaletteUse
GetCurrentObject
UpdateColors

msimg32

TransparentBlt

dsprop

ADsPropGetInitInfo

iphlpapi

IpRenewAddress
InternalSetIfEntry

shell32

SHExtractIconsW
SHGetSpecialFolderPathW

Sections

.text
Size: 165KB - Virtual size: 165KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 409KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ