3c08b38ae6c3be1f74a4cab78ef4f24b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3c08b38ae6c3be1f74a4cab78ef4f24b
Size

55KB
MD5

3c08b38ae6c3be1f74a4cab78ef4f24b
SHA1

2db2a2dd7d011b07bf97d184dd9726523f604b85
SHA256

d8580acb95f409d7a38ae52a394b4db96ac82fbc0597453a9afe3b5d14f232ab
SHA512

615a401c5a55da9ae54d6f09645789b92c1d78f7d894592f85ab02b5abc76058c1a9910794703788cf7a40bbe931316aa74199b7993b5b3a02de644ff8f0db54
SSDEEP

1536:+BF2m7DSLZ1pOHey/2R13bbWKkinnpXgHPvtk:mF2miZ1pOHeD3rbWKBKtk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c08b38ae6c3be1f74a4cab78ef4f24b

Files

3c08b38ae6c3be1f74a4cab78ef4f24b
.exe windows:4 windows x86 arch:x86

193ac242f910156347c938556ec6e141

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
GetVersion
SetFilePointer
lstrcpynA
GetCurrentProcess
GetStartupInfoA
GetModuleFileNameA
SetHandleCount
GetOEMCP
LCMapStringA
GetStringTypeW
CreateFileA
LCMapStringW
lstrcpyA
TerminateProcess
GetCommandLineA
MultiByteToWideChar
lstrcatA
lstrcpynW
GetACP
GetStdHandle
GetStringTypeA
GetCPInfo

user32

DrawIcon
EndDialog
CreateIcon
InsertMenuA
GetDC
DrawTextW
LoadCursorA
DrawTextA
LoadMenuA
GetWindowTextLengthA
GetFocus
GetCursor
DialogBoxParamA
GetWindowTextA
GetDlgItem
DialogBoxParamW
DrawIconEx
CloseWindow
CopyIcon
IsMenu
GetMenu
IsWindow

comctl32

ImageList_GetIcon
DrawStatusTextW
ImageList_Add
ImageList_GetIconSize
ImageList_Draw
CreateToolbar
CreateUpDownControl
ImageList_LoadImageW
DrawStatusText
ImageList_DragEnter

advapi32

RegOpenKeyA
RegDeleteKeyA
RegSetValueW
RegOpenKeyW
RegCreateKeyA
RegOpenKeyExW
RegCreateKeyW
RegQueryValueA
RegEnumKeyA
RegQueryValueW

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 17.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ