acc30822c2f35502697b8145297543aa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

acc30822c2f35502697b8145297543aa
Size

328KB
MD5

acc30822c2f35502697b8145297543aa
SHA1

19fa1c884edf649df360730b689a4ef63620b292
SHA256

770a9ff67b45d3250fce5e56157bf6cbd6f7359e720e41bf887cd44ceee318af
SHA512

c0ad068e949c61809fda1084b42cb1762a8fb56f5693c462a156e1605a4514dec75692199d5297f738802c49c114036ace0a8aafda81418c938c76487c957fe8
SSDEEP

6144:PiRNNcDC+iogEfTTmo9yKA3EDuOmAJQ73BC40NxOHnzRtr7YRCwv:aRNNc+VogKtsxOmAJQ73iNxCzRhFwv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
acc30822c2f35502697b8145297543aa

Files

acc30822c2f35502697b8145297543aa
.exe windows:4 windows x86 arch:x86

cf3fcafddaff9d55c04c0f9379f64115

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
LoadLibraryExA
VirtualProtect
HeapCreate
GetCommandLineA
CloseHandle
SetConsoleCP
SuspendThread
WaitForMultipleObjects
GetConsoleCP
GetSystemDefaultLangID
GetStdHandle
GetModuleHandleA
GetTickCount
HeapReAlloc
WaitForSingleObject
CompareFileTime
GlobalUnlock
InterlockedExchange
GetVersion
GetAtomNameA

user32

SetPropA
SetWindowPos
GetKeyboardLayout
DispatchMessageA
CopyImage
EnableScrollBar
FillRect
DrawCaption
CreateMenu
InsertMenuA
DialogBoxParamA
DestroyMenu
GetCursorInfo
InvertRect
IsDialogMessage
FindWindowA
CreateCursor
CreateIcon
DragObject
SetScrollInfo
GetDlgItem
GetKeyState

advapi32

RegCloseKey
RegCreateKeyExA
RegQueryInfoKeyA
RegEnumKeyA
RegEnumValueA

uxtheme

GetThemeColor

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 744KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 744KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ