3ab35488b9eeed4fb1ed268ea8a27b57 | Triage

Sharing

General

Target

3ab35488b9eeed4fb1ed268ea8a27b57
Size

56KB
MD5

3ab35488b9eeed4fb1ed268ea8a27b57
SHA1

05b151085a27dfb1cb6eb2811e2a34a1b66db544
SHA256

6608611271c654108e30d01c41224adf068619221a9dd2f2a2ebba36fc46e2a1
SHA512

a78cf27669bc1c47bd86005eb845eeb5207156d167174bda7cba88f979f8119449a26c607146fd73368bff9853ba8d4ef7604059de2eae9401a42335c14df137
SSDEEP

1536:Du8/INz6qmNRflOSDBvpp6t/9kqmVDNd9PgwQu:Du8wENFDDHp6t/9kxZYw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ab35488b9eeed4fb1ed268ea8a27b57

Files

3ab35488b9eeed4fb1ed268ea8a27b57
.exe windows:4 windows x86 arch:x86

d3f44bb280373d7dc434c7940990a1f0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCompressedFileSizeW
GetNumaAvailableMemory
FoldStringA
GetStringTypeA
HeapAlloc
GetSystemRegistryQuota
SetConsoleMenuClose
EnterCriticalSection
HeapAlloc
InterlockedFlushSList
CreateMailslotW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE