a3f0fb53a8e09aa96f59ad8ffd456764 | Triage

Sharing

General

Target

a3f0fb53a8e09aa96f59ad8ffd456764
Size

9KB
MD5

a3f0fb53a8e09aa96f59ad8ffd456764
SHA1

6704e54cd1c92cb18dda19783d319da1057ed458
SHA256

f40f3c492e2598718c818e7af8e9a982c3ca7c6b386545b5ed9afc7ebd77c425
SHA512

818c426b1947e0a887c662d4e94e0964ab3662a9d13a2391cdba56872b19f1a9f21ada0b94a98b16cdc675de2807632ce1716ab9cd5dff2926f2e0c7df784248
SSDEEP

48:6PHW7SnNKAioeJNc/yy25ZuJlUtaPPeG3fL/k1vJaKHMAqJ2JS88tZBv7c:bsNKAB/7QUGta3eYjirqJ26dw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a3f0fb53a8e09aa96f59ad8ffd456764

Files

a3f0fb53a8e09aa96f59ad8ffd456764
.exe windows:4 windows x86 arch:x86

a29e41627ed10624b64fbb01fd8b76f3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDCEx

kernel32

CreateThread
ExitProcess
GetAtomNameW
GetLastError
Sleep
WaitForSingleObject

gdi32

EnumFontsA

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 320B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ