3d438716546c07a2cf5c725f3cb744ec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3d438716546c07a2cf5c725f3cb744ec
Size

269KB
MD5

3d438716546c07a2cf5c725f3cb744ec
SHA1

aacf2b973bbe7f253b00223f6fa029be4a1fa24b
SHA256

9a63452da0e51becc0a864da43661647287862a7870b68d5d3261762fe38513c
SHA512

9d96f023641ae367d21d6a926154fa3eb62f3b448cd2a49f132bb3e699aeb4d9f76681a107d31b4fe07fc506f6a3d829085f9404a73dbaffe89eaea472d15d5c
SSDEEP

6144:Zvb9N1EgXF9cOEz9n1vCNkZXqnI0Q2l9R:ZvlEKFONT0tl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d438716546c07a2cf5c725f3cb744ec

Files

3d438716546c07a2cf5c725f3cb744ec
.exe windows:4 windows x86 arch:x86

ba6bd517d47d97cc0ddfc45cf015e0fc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
FindAtomA
lstrlenW
ExitProcess
GetPrivateProfileIntA
FindClose
GetModuleHandleW
CreateFileMappingA
LoadLibraryW
SetLastError
TlsGetValue
GetTickCount
GetComputerNameA
IsDebuggerPresent
HeapDestroy
VirtualAlloc
GlobalFree
GetFileAttributesA
GetSystemTime
MapViewOfFile

user32

GetClassInfoA
CallWindowProcA
CloseWindow
GetDlgItem
DispatchMessageA
GetMenu
CreateWindowExA
GetCaretPos
DrawStateA
GetClientRect
FillRect
DestroyCaret
EndDialog

ntshrui

GetLocalPathFromNetResourceA
IsPathSharedA
IsPathSharedW
GetNetResourceFromLocalPathA
IsFolderPrivateForUser

dpnet

DllGetClassObject

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 258KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ