3a4447a25026165e746ec02cf1b5c452 | Triage

Sharing

General

Target

3a4447a25026165e746ec02cf1b5c452
Size

57KB
MD5

3a4447a25026165e746ec02cf1b5c452
SHA1

95e5a578c923bba2871af4fa7f95a8f32b8afa9f
SHA256

73c360cc6a6302276abb2884699b4eaddb22dba5597ae612df7d7755fa84eca2
SHA512

cb92675a7a45d8e841311fe49e027ee093edebaa115fd6b62c6df07e007d84de1ec0b228141663c7651bbbe95bb4af5e0a191703781b8d4ac518fb200f2de435
SSDEEP

1536:p9fTly+WPR6pJpXQGAa5jRIx3YCdIoZLpqa8:HfTA+WPR6lHRgiSL78

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a4447a25026165e746ec02cf1b5c452

Files

3a4447a25026165e746ec02cf1b5c452
.dll windows:4 windows x86 arch:x86

7d470ef709af1e381e247fc6e20fad7f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

DispatchMessageA
DrawCaption
DrawMenuBar
DestroyMenu
EnableMenuItem
EnableScrollBar
EndDeferWindowPos
DestroyIcon
CreateIconFromResourceEx
CreateIconFromResource
CreateDesktopW
CreateDesktopA
CreateCursor
CopyImage
CharUpperA
CharToOemBuffA
CharToOemA
CharPrevA
CharNextA
CharLowerA
DrawStateA
ActivateKeyboardLayout

kernel32

lstrcatA
VirtualFree
TlsSetValue
SetLastError
RtlUnwind
LoadLibraryA
LeaveCriticalSection
GetStartupInfoA
GetDateFormatA
FindResourceA
ExitProcess
EnumResourceNamesA
EnumResourceLanguagesW
lstrcmpA

Sections

.text
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE