3def7b3e7844875d173760cc359d64c0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3def7b3e7844875d173760cc359d64c0
Size

406KB
MD5

3def7b3e7844875d173760cc359d64c0
SHA1

08cfe0d1ec55345bf775b45f4776272ac730d9b6
SHA256

bd1234eaa15a0482f03d43a975c1fef0f86cf3b4f9bf380b1adc7cff4e4844fc
SHA512

b019d8a6f3f40cb6cb3fea7d8ed3ee546fb01222d0332ffd96a25dfb52ff5bcdb96d26ebc2569ce8af8c49ca7499669d74635644c34ffaf42d3754b8f32d9241
SSDEEP

6144:rZ/UKqYhGUMbItaQzEFH6yCwKAZ7zniqDxGoZCoUhI0y8/HMP31t:SKqYcRQsahAZ7+GGju8U9t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3def7b3e7844875d173760cc359d64c0

Files

3def7b3e7844875d173760cc359d64c0
.exe windows:5 windows x86 arch:x86

b561b5e5e6c9ccd95a66543e1518625d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumKeyW
RegDeleteKeyA

kernel32

FreeResource
ExitProcess
GetLastError

user32

CopyImage
IsWindow
AppendMenuW
GetWindowTextLengthA
DrawTextW

Sections

.lemje
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.nphp
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lhaii
Size: 341KB - Virtual size: 708KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bgjaj
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ