65c8c3cd33fd0e8430f49fa4b0046679 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

65c8c3cd33fd0e8430f49fa4b0046679
Size

359KB
MD5

65c8c3cd33fd0e8430f49fa4b0046679
SHA1

f48adcecc301fefe08b75114825caeb90b9fe395
SHA256

02de84373f2cea59100f50cd03ee73b4b42b39f22100a982c45096d9de07028b
SHA512

1970b81849de0be6da277349d629a5408540a7faf3744ed5e404713a49bddc4b63122d294b66def5d1987652c956f63ab9a3fd34cf2585014e4a57d2459d5911
SSDEEP

6144:w9HxSlGPQBaZ+BqhMXAy6fYv2SeJ3eB8fvmKNNcQ5ta6gKv5R3L/XWlpWzsVV2Ir:w9R9QI0Ay6fYvzEOe2KNSQ6l83zBzsu+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
65c8c3cd33fd0e8430f49fa4b0046679

Files

65c8c3cd33fd0e8430f49fa4b0046679
.exe windows:4 windows x86 arch:x86

66b3d42ccfe067174926885d77f4b86d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReleaseMutex
ResetEvent
GetSystemTime
LoadLibraryA
GetDriveTypeA
GetCommandLineW
ExitProcess
GetComputerNameW
lstrcpynA
GetTickCount
LocalFree
CloseHandle
GetModuleHandleW
HeapCreate
GetFileAttributesA
GetTickCount
CreateFileA
GetDiskFreeSpaceW
ReleaseMutex
FindAtomW

user32

DrawStateA
GetMenu
GetClassInfoA
GetDlgItem
EndDialog
CallWindowProcA
GetComboBoxInfo
DestroyCaret
CloseWindow
FillRect
GetKeyState
DispatchMessageA
CreateWindowExA

snmpapi

SnmpUtilMemAlloc
SnmpTfxOpen
SnmpTfxClose
SnmpUtilMemFree
SnmpTfxQuery

modemui

CountryRunOnce

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 436KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 346KB - Virtual size: 345KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ