3a76611e97bacdc1f7e2ace3732436aa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3a76611e97bacdc1f7e2ace3732436aa
Size

89KB
MD5

3a76611e97bacdc1f7e2ace3732436aa
SHA1

2d3a0be320299bebd8356fcc0d0500d2379f5e0f
SHA256

d4801b44a1b473b4de5296e3dbdf32711b4b227985002eb5c303d190ef3fe93a
SHA512

0773c903bdbaffc68fb785c9db11aded9d28a0b45a621a746b1f290812beb14d150a5647ac6d65752bc5398381c616e8c65f4ea17d75bd99d04a99bf819ee62a
SSDEEP

24:etGSPvAM5mdVeZOclOc1RdoBOVc6pNquOAbcT9br:6fwdIQckcbdoBedNM9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a76611e97bacdc1f7e2ace3732436aa

Files

3a76611e97bacdc1f7e2ace3732436aa
.exe windows:4 windows x86 arch:x86

5968d35635d8e8430822afe1501261f6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA
ExitWindowsEx

kernel32

CloseHandle
CreateFileA
ExitProcess
GetWindowsDirectoryA
GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock
ReadFile
WinExec
lstrcmpA
lstrcpynA
lstrlenA

advapi32

RegCloseKey
RegCreateKeyA
RegDeleteValueA

Sections

damrai
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE