395a347a0f9ffdfde42db2cb226ad957 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

395a347a0f9ffdfde42db2cb226ad957
Size

92KB
MD5

395a347a0f9ffdfde42db2cb226ad957
SHA1

7f0b7e1a97793b7560e6f182452423c3790cfbf5
SHA256

a4998ccdd8634c61d333438a7303d9f8cd2873ea4787f2b8e61d052c867c361c
SHA512

ff9128e00dd7c97ae0555c8a11a67638fac26e5371cf3f2e8bebc01b9e37ff0d3be6558cfcb81c48510584b94329f5b830e394ac011f6ea6bb8393a63b9177a2
SSDEEP

1536:mmEMyQC1kghZ/qNmxW49mw6RdcP1NJx/QjW3UIFHlKjyyn2bh46+Ga:mmfyQC1kuZImOSx4kaj12N2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
395a347a0f9ffdfde42db2cb226ad957

Files

395a347a0f9ffdfde42db2cb226ad957
.exe windows:4 windows x86 arch:x86

0fd4060da2826f2ef707373a70f09320

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateThread
GetVersion
GetCommandLineA
GetStartupInfoA
GetProcAddress
GetModuleHandleA
LoadLibraryA
Sleep
GetACP

user32

DefWindowProcA
RegisterClassExA
CreateWindowExA
GetSystemMetrics
ShowWindow
GetDC
ReleaseDC
FindWindowA
GetMessageA
DestroyWindow

gdi32

SetPixel

Sections

vcasm
Size: 49KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vcasm
Size: 42KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE