3e4c0ab801a5822e231f7c7da8abd6ed | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3e4c0ab801a5822e231f7c7da8abd6ed
Size

28KB
MD5

3e4c0ab801a5822e231f7c7da8abd6ed
SHA1

b960031edb9a1aaf1d3ed5a77992797393676cbd
SHA256

a2abde3e594c835dae818739b82f090e9a2a426927b1b90ac5f88907b8487c63
SHA512

7bf1186e49a86f778a19fb2dc55b55de1b5f2f90b91290c4ccd60dfdf138c90881dbd7eec7f12e98c219c1420161993730506366ca58e00be948df193df79714
SSDEEP

384:froJMim0OWAcfAglOF1tTKuQKGt3F9AMdbf7073PphjK0EH0pRyE2ezgBtsP4KJn:fkA2flYR/+3o0H073PHjvEH7PCg24Gn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3e4c0ab801a5822e231f7c7da8abd6ed

Files

3e4c0ab801a5822e231f7c7da8abd6ed
.exe windows:4 windows x86 arch:x86

21814ab37d764df1352f5197af1e78ef

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

WriteConsoleOutputA
InterlockedExchangeAdd
GetConsoleAliasesLengthA
LoadResource
GetCurrentConsoleFont
ReadConsoleInputA
SetConsoleMaximumWindowSize
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

text
Size: 4KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: 20KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ