43ae02d1ebefb00f98b2f1913ef339d7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

43ae02d1ebefb00f98b2f1913ef339d7
Size

276KB
MD5

43ae02d1ebefb00f98b2f1913ef339d7
SHA1

1d9c0e025af22a1114907788ee2cd0758cdb6d5b
SHA256

3d6fcde7ef245cde3a3e7365d5bf12a4dcf72fc5b0e1b12a6dc066adfb7a84fc
SHA512

958afe2534fa7f39c3843b131c7ee4d904685622156ca8c98f7f6d96aa982e0336c46acfb4f164c886ab7f4c690ffcbfe29ec39580d1dd0e5fe3c66c20a7f6d1
SSDEEP

6144:i/V/HWcdmHTkTjGdesL6f6i69mNLTUwtqmN+pLanQIZ:i/FHPmQG/+L692Iw+pLG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43ae02d1ebefb00f98b2f1913ef339d7

Files

43ae02d1ebefb00f98b2f1913ef339d7
.exe windows:4 windows x86 arch:x86

bc4da8e4ff57843ce18157e41b3a7f43

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceLanguagesW
GlobalGetAtomNameW
IsDBCSLeadByte
GetCurrentThreadId
ReadFile
GetModuleHandleA
FindFirstFileA
SetFilePointer
WriteFile
WideCharToMultiByte
EnumResourceTypesA
GetSystemDirectoryW
GlobalHandle
lstrlenA
GetCurrentProcessId
QueryPerformanceCounter
FindNextFileA
FindClose

oleacc

LresultFromObject
CreateStdAccessibleProxyW

newdev

UpdateDriverForPlugAndPlayDevicesA

Sections

.text
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 135KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ