3a7cb1e937df82a00366831beb55a5b5 | Triage

Sharing

General

Target

3a7cb1e937df82a00366831beb55a5b5
Size

9KB
MD5

3a7cb1e937df82a00366831beb55a5b5
SHA1

e96a415b7f94214669a5d61dc885156cb9e224eb
SHA256

721f51dcb353e6b376ad5e70d91abda2142d891cf90850b456c1447352b7433e
SHA512

902779802f2f0908f319be3340cc41eabd500b73f381c4435e6fe881d52c085e36c80623c345d33823ed929d5ba5a6d5bb3a09fd967f5eed1dda818a91402541
SSDEEP

192:+VsZfqNL9x0D8186ZW1YtNEDXxL1MoCGdDXjt2qryCiZxhzJ9fJ:+CcC3DXXfEqryz7h/x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a7cb1e937df82a00366831beb55a5b5

Files

3a7cb1e937df82a00366831beb55a5b5
.exe windows:4 windows x86 arch:x86

bca6482adb0d5f12539daf708bcdc0e9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ClearCommError
CommConfigDialogA
CreateFileW
CreateMailslotW
ExitProcess
GetLongPathNameW
LocalFree
ReadProcessMemory
SetConsoleMode
SetConsoleTextAttribute
SetFileApisToANSI
WritePrivateProfileStringW

advapi32

BuildTrusteeWithSidW
CreatePrivateObjectSecurity
CryptEnumProvidersA
CryptEnumProvidersW
CryptHashData
CryptImportKey
CryptSetProviderW
GetKernelObjectSecurity
GetMultipleTrusteeW
GetNamedSecurityInfoW
LockServiceDatabase
LookupPrivilegeNameW
OpenServiceA
RegLoadKeyW
RegQueryMultipleValuesA
RegQueryValueExW
RevertToSelf

user32

CreateIcon
DdeReconnect
EnumPropsA
GetKeyboardLayoutNameW
IsCharUpperA
IsCharUpperW
IsRectEmpty
LoadStringW
OemKeyScan
PtInRect
SendMessageCallbackW
SetDebugErrorLevel
SetPropW
SetWindowTextW
ShowWindow
wvsprintfA

gdi32

AnimatePalette
CreateFontA
EnumFontsW
EnumObjects
ExtTextOutA
GetClipBox
GetGlyphOutline
GetTextAlign
GetTextFaceW
ResetDCA
SetMapMode
SetWindowExtEx

Sections

.text
Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE