ac2c74939bb9419e3b843e96e066a27d | Triage

Sharing

General

Target

ac2c74939bb9419e3b843e96e066a27d
Size

171KB
MD5

ac2c74939bb9419e3b843e96e066a27d
SHA1

6ca3f57f07804284910a14ea20892bb1c66c4f89
SHA256

6e7a973a2d334cdc4421ddf0247b318ee18f4431775e59ee98f0fe411361b4bd
SHA512

e68dc2cae6bd04d04be9ec2db65399bae94a64a5884a9e583dc87ee410aa7a4e0585e4bec2ae2ecb8ba2b02f712d024f29685d2566f28808eac439f1e011f554
SSDEEP

3072:16SzrU5NETm9rXt7e/WM3HzvBYaP9bMKR6ixzRMZzSL5GtzVvh:16ziUrX8/DT5YaP9oo6czEZVh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ac2c74939bb9419e3b843e96e066a27d

Files

ac2c74939bb9419e3b843e96e066a27d
.exe windows:4 windows x86 arch:x86

7c9456b072e834c4ed44d991fd3194c7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA
wsprintfW

msvfw32

ICClose
ICOpen
ICSendMessage
ICDecompress

kernel32

GetShortPathNameW
UnhandledExceptionFilter
IsDebuggerPresent
GetLastError
SetHandleInformation
LocalFree
DeleteCriticalSection
LoadLibraryA
EnumResourceTypesW
InitializeCriticalSection
GetCurrentThreadId
CreateFileA
SetUnhandledExceptionFilter
GetCurrentProcessId
CloseHandle
GetProcAddress
GetModuleHandleA
GetVersionExA

ole32

StgCreateDocfile
StgOpenStorage

Sections

.text
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 868B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ