3cb4ed05587db7b141bda31bb46d5228 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3cb4ed05587db7b141bda31bb46d5228
Size

250KB
MD5

3cb4ed05587db7b141bda31bb46d5228
SHA1

0be8f32174172c7c5827e1cf157c885a5ce12fc4
SHA256

75e7b99795aea1d20b0084c7377b10e5377c57792abc69b98e3c58af7ed45486
SHA512

aa63cff5f527e725b3b0097195a57cfc2c5f9608f0a0f6a4a841982bde482d6ef6e4a7db4ea70060e0368bba231b1edd676b10de1817651573caaf20240322ca
SSDEEP

6144:y2Wf0Txg3iO0lui4AjS8LNkeJL5CRAEnpnXXlmv:5WukiO/i3WwHJLuBnpFmv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3cb4ed05587db7b141bda31bb46d5228

Files

3cb4ed05587db7b141bda31bb46d5228
.dll windows:4 windows x86 arch:x86

b59bedf0c28781f157b9b450c0026ffa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateFileMappingA
ExitProcess
ExitThread
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetModuleHandleA
GetStartupInfoA
GetSystemTimeAsFileTime
GetTickCount
GlobalAddAtomA
LoadLibraryA
MultiByteToWideChar
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
VirtualAlloc
VirtualProtect

msvcrt

fwrite
strncmp
wcscmp

user32

SetCapture
FindWindowExA
SystemParametersInfoA

comctl32

CreateStatusWindowA
InitCommonControls
ShowHideMenuCtl
CreatePropertySheetPageA

Exports

Exports

B

Sections

.text
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 74KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ