3f5d108cb976b7a5ef82fd3f82e74ea8 | Triage

Sharing

General

Target

3f5d108cb976b7a5ef82fd3f82e74ea8
Size

776KB
MD5

3f5d108cb976b7a5ef82fd3f82e74ea8
SHA1

13ded0a40e8ab235a5a9387443a7da7e48a8e2e9
SHA256

36ef4bfbc7cff2fcf655ee39730e59beecbf08cad30455599f6f143d3d651fbf
SHA512

1850e08945b80bf9b0eec97f94565d709b05ff27f492a1b76b70cc83c8f62f61d1cc7fa106c770ac42e11bd91765a9a756c8dc3f6bb1fab1bc43ec9aebb550da
SSDEEP

12288:sUZDky7egtcGxKT4TncD2HpvtBJ3I5yAf46BZgB6u01p2V4u5P43gwF9cRXhW:PZzp4T4TnA2H5hI/4OuepRgvW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f5d108cb976b7a5ef82fd3f82e74ea8

Files

3f5d108cb976b7a5ef82fd3f82e74ea8
.exe windows:4 windows x86 arch:x86

00a08b4bdf4042f6bea9646bc50c2609

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

advapi32

RegOpenKeyExA

dinput8

DirectInput8Create

gdi32

EnumFontFamiliesA

imm32

ImmIsIME

oleaut32

SafeArrayCreate

shell32

ShellExecuteA

user32

ChangeDisplaySettingsA

winmm

timeGetTime

wsock32

inet_addr

d3d8

Direct3DCreate8

mss32

_AIL_shutdown@0

ole32

CoInitialize

Sections

.text
Size: 764KB - Virtual size: 4.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE