a3f22434b38a57d7dfcc708791282974 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a3f22434b38a57d7dfcc708791282974
Size

815KB
MD5

a3f22434b38a57d7dfcc708791282974
SHA1

7268e3388a21ddd1c313185e52a96af443c2d951
SHA256

72cb6e86553161c4b285dead4a881386c98d21e6de438165959c305ecc0035b4
SHA512

0f7f2b18f572b90fd51fe1d4e4d5f335b2ea84b5bc764b89282ef1f0aa1d4ceb46afce520b77cc3d239eb52c0e54729e79f22276d44f59b7b0ac82aaa0ed23ab
SSDEEP

24576:wx6jkncV7wzGcZWwKPhIzNLWnJMqM1dwr5:wwTV6GcAX4WJbiCr5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a3f22434b38a57d7dfcc708791282974

Files

a3f22434b38a57d7dfcc708791282974
.exe windows:4 windows x86 arch:x86

04992291623be78791767cb2ec9d2ba7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
GlobalLock
FindClose
CreateFileMappingA
FreeEnvironmentStringsA
GetACP
FindAtomA
TlsGetValue
CreateMutexA
CreateFileA
Sleep
SignalObjectAndWait
ExitProcess
CloseHandle
GetModuleHandleA
GlobalUnlock
LocalFree
LoadLibraryExW
GetLastError
GetConsoleCP

user32

FillRect
CopyRect
DefWindowProcW
CheckRadioButton
DrawEdge
IsWindow
GetDC
DispatchMessageA
CallWindowProcA
GetIconInfo
GetDlgItem
DrawFrame
GetFocus
MessageBoxA

uxtheme

GetThemeRect
GetThemeSysInt
DrawThemeIcon
DrawThemeEdge
DrawThemeText

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ