2a3e261955441b0176e8607ad9248ee70c65b973cbb409a585ba3af200307dae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2a3e261955441b0176e8607ad9248ee70c65b973cbb409a585ba3af200307dae
Size

120KB
MD5

c73dbdbfd3ddf2221ada704d6256a460
SHA1

b9d49b37d77429d65bb538196bdade334e58d206
SHA256

2a3e261955441b0176e8607ad9248ee70c65b973cbb409a585ba3af200307dae
SHA512

248e8d79cbeedd6ae18f1c82f1a6719285bda13904c195b427a266f54d44f25f6cb98138673b46b059226de96be40b3461e3169cd6ecde12a97cda764ec1cbbc
SSDEEP

1536:/HfUWOJ10a6T9FvqpneM5jFp9CaL+sg2hYCP9fDGPTKpJDT/0G2+Q:/MN4HqpnfRf/H5hR9GPyBT/0GW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a3e261955441b0176e8607ad9248ee70c65b973cbb409a585ba3af200307dae

Files

2a3e261955441b0176e8607ad9248ee70c65b973cbb409a585ba3af200307dae
.dll windows:4 windows x86 arch:x86

0f44bf2b3b0b8d5ecae5689ff1d0e90d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode

user32

wsprintfA

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ