dfdfd6a72dd2a295c51726dfc3265470 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dfdfd6a72dd2a295c51726dfc3265470
Size

184KB
MD5

dfdfd6a72dd2a295c51726dfc3265470
SHA1

a9a05f1d6b9ff232ca5e79c188baf46eac948f55
SHA256

3cb415b8cea5fabcf8daabd471af3996545b97cf7fc7f56976e0eb2b84218719
SHA512

047403b559d84c2c2f17d2b8375475f7de58ca3c66cd54d0db8d80b07c0d9b8fafcd624ad0d63798f43332f7344c74593f40a23bec79189583bc277263b0afd3
SSDEEP

3072:Q9A0GVWpAX58RSxzCHeOncmBik2h77l0FhlHPfpQH9+WN3PMhYDg6QQsoZGkRsPE:SpG0wxz+lpBikjrlvUHZ1Dg6QLkRsX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dfdfd6a72dd2a295c51726dfc3265470

Files

dfdfd6a72dd2a295c51726dfc3265470
.exe windows:4 windows x86 arch:x86

3c8f217c69c1c81201aacbf969f466a8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsSystemResumeAutomatic
LoadLibraryA
AreFileApisANSI
DosDateTimeToFileTime
GetNextVDMCommand
HeapDestroy
GetConsoleNlsMode
SetMailslotInfo
TlsAlloc
CreateProcessInternalA
SetComputerNameA
CreateMailslotW
SetThreadContext
SetThreadLocale
CloseHandle
GetThreadPriority
BackupSeek
GetProfileStringW

user32

DlgDirListComboBoxW
CheckRadioButton
SetClassWord
RegisterTasklist
RegisterClipboardFormatA
DdeConnect
keybd_event
DefDlgProcW
CreateDialogIndirectParamW
GetThreadDesktop
SetLayeredWindowAttributes
GetMessagePos
IsCharLowerA
HiliteMenuItem
DeregisterShellHookWindow
CloseWindow
GetUserObjectSecurity
GetMenuStringW
GetDlgItemTextW

Sections

CODE
Size: 9KB - Virtual size: 811KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 170KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pack32
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ