f3a720ac9300955ee805d368f4e8485fdfbd7c40078185c0f1627bb2d05f50fa | Triage

Sharing

General

Target

f3a720ac9300955ee805d368f4e8485fdfbd7c40078185c0f1627bb2d05f50fa
Size

3.0MB
MD5

a7da31fa57185726a5e44d5399611469
SHA1

04ed5ce7915dbac0b3f1ddde6aad5b579e363c35
SHA256

f3a720ac9300955ee805d368f4e8485fdfbd7c40078185c0f1627bb2d05f50fa
SHA512

a80741ef78044790dd34bccd2e8fa0561aff9a6611765e8142ca342c2934e7759fe849bf680e49c92967807dd7b067b279baf9f39d715d33af1307ada0475aab
SSDEEP

49152:MQdN4YQz03ie2wHIEY/yhbhB0LR+C1cNf3Kw3NpVczLWO:5deYfyrwHIEY/yBhB0wtNf3KJLd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f3a720ac9300955ee805d368f4e8485fdfbd7c40078185c0f1627bb2d05f50fa

Files

f3a720ac9300955ee805d368f4e8485fdfbd7c40078185c0f1627bb2d05f50fa
.exe windows:6 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 570KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

sontrijl
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

azfxjhkv
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE