3cc55b3049e1d45718a2a6cbcf61ed079078c8ce418ff1eaffd03b412b702671 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3cc55b3049e1d45718a2a6cbcf61ed079078c8ce418ff1eaffd03b412b702671
Size

2.2MB
MD5

22e02c83773863eabce93313b8f00d28
SHA1

95ee94090fb9f3ce6f9ee5e39f626fa120536853
SHA256

3cc55b3049e1d45718a2a6cbcf61ed079078c8ce418ff1eaffd03b412b702671
SHA512

3910038a520593eec1695b97170aede1614af16a0ead22dd8631bc6e9922d9d00791625a122af8f9d6677052e1410373d9ead2c4248e9a40c672b37585e5c175
SSDEEP

49152:QKcwKiml01ukO+vl0fWUgRdDkMlkxsLJUaYllxcNkD:QRwSl0K6l0CDkMl0sLJUaYzx7D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3cc55b3049e1d45718a2a6cbcf61ed079078c8ce418ff1eaffd03b412b702671

Files

3cc55b3049e1d45718a2a6cbcf61ed079078c8ce418ff1eaffd03b412b702671
.exe windows:4 windows x86 arch:x86

b70a5c3df2fb546792d4acbec9951bb0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

user32

GetWindow

advapi32

RegDeleteKeyA

shell32

SHGetFolderPathW

Sections

.data
Size: 1.4MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 757KB - Virtual size: 760KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 86KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ