ac3d513dc91f9bf1ad94cf7c24b2041c | Triage

Sharing

General

Target

ac3d513dc91f9bf1ad94cf7c24b2041c
Size

16KB
MD5

ac3d513dc91f9bf1ad94cf7c24b2041c
SHA1

425f6ebb9d26af41d40bd9da45ef817c1938ad98
SHA256

c24794a8a2473448f7a881f7120209f5fa4107a73f02b2043eed1d70e61b258f
SHA512

e328160a8891335de330399e673c94fd0dc3c5991cd49c2c8cb9dc92a8adb36d705cbb37e1097cb6d172d68d4d83780eb9e01f79f3292c93b3347a90b6764d5c
SSDEEP

192:nNFeKJtnf4sz5Zsc+rwLSSLU9vzgAAJNekN/UZTOzGaOdWwTE7j3ZwmNDdnhvTjQ:eK0LcI0SL7gn+k9UZTmmE7jpwiviJFP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ac3d513dc91f9bf1ad94cf7c24b2041c

Files

ac3d513dc91f9bf1ad94cf7c24b2041c
.exe windows:1 windows x86 arch:x86

3e073f8f2ba34fa9943e528b262e14e6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
ExitProcess
GetModuleHandleA

ws2_32

htons

wininet

InternetCloseHandle

shell32

ShellExecuteA

advapi32

GetUserNameA

crtdll

__GetMainArgs

Sections

pec1
Size: 12KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pec2
Size: 2KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE