ac3ffdcc189fa70f353459efa7ad7ee0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ac3ffdcc189fa70f353459efa7ad7ee0
Size

142KB
MD5

ac3ffdcc189fa70f353459efa7ad7ee0
SHA1

39f783e3d5b0feb241831eaace806c3e2b521540
SHA256

a8868534595a87747fbfff44ef8cfaa3bf1c41212f2f619d87c0324f6f9f15b4
SHA512

982eb68903cde9ca14c2049c14d21da828268ca58e092cb41dc958f1dfa0a6af59f1e29f38e123827b9c3f62fe8655448a1a230d5008c3e2a65a0fcc465a7b54
SSDEEP

3072:Lp80/sRq2SQQdz39dTS70CMCYBff7zsu+OKwr0sAUi:Lp89Ob9dmOCYBXkOK5sg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ac3ffdcc189fa70f353459efa7ad7ee0

Files

ac3ffdcc189fa70f353459efa7ad7ee0
.exe windows:4 windows x86 arch:x86

73e66d5b67490022bc9c9af21c579423

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA
GetProcAddress

oleaut32

SysFreeString

advapi32

FreeSid

gdi32

PatBlt

user32

GetDC

wsock32

send

winmm

waveInOpen

msacm32

acmStreamSize

avicap32

capGetDriverDescriptionA

shell32

ShellExecuteA

netapi32

Netbios

Sections

.MPRESS1
Size: 139KB - Virtual size: 296KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE