3a61b9526a97aca591ad76dc7faa597c | Triage

Sharing

General

Target

3a61b9526a97aca591ad76dc7faa597c
Size

368KB
MD5

3a61b9526a97aca591ad76dc7faa597c
SHA1

b456f47b2613e24eb3c3f5f10f4a5d1038875354
SHA256

8fe64fe0f0ecd088a38d30ad7f24dd1efe7b8e82321f4001cbbb4a1edf945c7e
SHA512

bd1ed050685407cda7a6c83741895a77b4b4b99a9403d4c6eee6eb300dd045248f98d69124c1fdf3bc84bf6481ab35d9497bbda5ec1e2d114ed81b6265d66d1c
SSDEEP

6144:UCmzRM4hrVf/DRauRHlwrFYaN5ino7241GtMqzIXPH8CV+mybPzKP3zUeXm9+r:UCmzRMOrpDneFNzino7IUHybPzQjUeX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a61b9526a97aca591ad76dc7faa597c

Files

3a61b9526a97aca591ad76dc7faa597c
.exe windows:4 windows x86 arch:x86

73e21db871f5629dd429b1db28ab48e5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFree
FindAtomW
GetConsoleAliasW
GetModuleHandleA
SetLastError
EnterCriticalSection
GetNumberFormatW
GetCurrentProcessId
GetCurrentThreadId
ResumeThread
GetDriveTypeW
EnumCalendarInfoW
GetPrivateProfileStringA
CreateEventW
SetEvent
lstrlenW
FindClose
HeapCreate
TlsGetValue
ReadFile

user32

CallWindowProcW
DrawTextA
GetClientRect
GetKeyboardType
GetKeyState
DispatchMessageA
SetFocus
GetSysColor
DispatchMessageA
GetCursorInfo
IsWindow
GetMenuInfo
GetClassInfoA

unimdmat

UmCloseModem
UmCloseModem
UmCloseModem
UmCloseModem
UmCloseModem

msasn1

ASN1BERDecBool

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 492KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 358KB - Virtual size: 357KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ