adf7b164836c7350181552182edf80b8 | Triage

Sharing

General

Target

adf7b164836c7350181552182edf80b8
Size

110KB
MD5

adf7b164836c7350181552182edf80b8
SHA1

e4e0874d6265dbd0627d2aeffaf5f9ea0e935ff6
SHA256

501408403023ffca596ff208a7970c2c4dd12fb3d014ecd2751434d2ca4c737a
SHA512

942d3855c2196ac2586b14445e145e7f69b4579801d69ec152844e32699a2485ee79ca68df7abe84aa24473bf4c337b25b4d43d6dbe72de5d840ad32399d88d5
SSDEEP

1536:jzurduZ8MTjs+6IePqeP6iZWmkGCBm05N2RwPMTL3e4CqTUDyF8COcuZZMKrs+Zs:3urdETjs+6NPqvGCBNbFMTcqDSzZoEPm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
adf7b164836c7350181552182edf80b8

Files

adf7b164836c7350181552182edf80b8
.exe windows:4 windows x86 arch:x86

35a4942e0773bf7ba132e0584d0e06a3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetCommandLineA

shell32

SHLoadInProc
ExtractIconA
ILGetNext
FindExeDlgProc
PathIsSlowA
PathResolve
SHAlloc

user32

CharToOemW
CreateIconIndirect
FindWindowW
GetClassWord
DestroyCursor
GetMenuState
GetUpdateRgn

Sections

.text
Size: 61KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE