3fa166ccff0b0c57154bfac0d7778f55 | Triage

Sharing

General

Target

3fa166ccff0b0c57154bfac0d7778f55
Size

927KB
MD5

3fa166ccff0b0c57154bfac0d7778f55
SHA1

88d66a500d6e63bba5a7e6cd4830f4716354bb1b
SHA256

b79386a0336cb8e16eb098ebd7173edbcd105ed098208bae697221965bb57f7a
SHA512

d0e72a3f4eeabc4a50dd47a35cef0770cc1de3b6c48f5cde2ba57caf0bdaeebd71be32a79e94eb37e1d57965483a84ede4795118c9dca5d8e2f49d77070c2452
SSDEEP

24576:X5wcDOMhpblgqYmRBNKzcn/wbInUA/eATKxBNcCIEttTpBfBL:XOOOEpbigM4nwu27Nw+tdzL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3fa166ccff0b0c57154bfac0d7778f55

Files

3fa166ccff0b0c57154bfac0d7778f55
.exe windows:4 windows x86 arch:x86

07509d11f4c1e939e27cae9a3ecfb0e2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
HeapCreate
LCMapStringA
ExitProcess
HeapAlloc

user32

CreateWindowExA
CharLowerBuffA
CloseWindow
SetWindowLongA

advapi32

RegSetValueA
RegCloseKey
RegEnumKeyA
RegDeleteKeyA

ole32

CoGetClassObject
CoInitializeEx
CoCreateInstance

Sections

.text
Size: 88KB - Virtual size: 262KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: 68KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE