af351c3957f65328e8981a832395de3dcac04b1ef7032bd7bfe7a75bf55464d9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af351c3957f65328e8981a832395de3dcac04b1ef7032bd7bfe7a75bf55464d9
Size

76KB
MD5

feb701f7c8bbfb815412599268f96271
SHA1

d7c82abb0303763f442704381fa281922d2cbb2f
SHA256

af351c3957f65328e8981a832395de3dcac04b1ef7032bd7bfe7a75bf55464d9
SHA512

9b7c60866d7c33c135173112f12f1363a9a193d4c27baf036b4f3787b00e5e8b9df123dfe6ee46640729d7ebef4ff35adf75cd9f83466f785df75dae044a50db
SSDEEP

1536:0DQVzPtqvW2PKUiZ5FNPFOmfTa28ufeNaGr0x+cf0V+DLgdKZT/mrY5EUMP24hJs:ZKRyzS5GEKjbHs2qo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af351c3957f65328e8981a832395de3dcac04b1ef7032bd7bfe7a75bf55464d9

Files

af351c3957f65328e8981a832395de3dcac04b1ef7032bd7bfe7a75bf55464d9
.exe windows:4 windows x86 arch:x86

712420020e4a6db91d0dfbbf4118b42f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetCalendarInfoA
Module32First
LockFile
CmdBatNotification
WriteConsoleInputA
DnsHostnameToComputerNameA
DeleteAtom
LZCreateFileW
GetVolumeNameForVolumeMountPointW
EnumUILanguagesA
HeapAlloc

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE