a2efedc37c11e27298e239279ae54dcc0115dbe5495eb54d4591ffacf924eca1 | Triage

Sharing

General

Target

a2efedc37c11e27298e239279ae54dcc0115dbe5495eb54d4591ffacf924eca1
Size

5.3MB
MD5

34badee1670ba4d5400c5a02ec7c1d1c
SHA1

a439aa3493af89bbda8d7b2932bcc15cd1c728e2
SHA256

a2efedc37c11e27298e239279ae54dcc0115dbe5495eb54d4591ffacf924eca1
SHA512

fba6fe78321b95a970c46557114263243330239030ba709f0376070741b04755a54cf11628b918695163c2de758a17bbccb2e5ca7366294adcea40cf341a6a7f
SSDEEP

98304:8VbDxZAN0wjPDPloI/roeR7PiSqUZ6uuW6kQpN/dHKb69ZgK:8RVZlwfBo8iSqUcuuWipN/dHKogK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2efedc37c11e27298e239279ae54dcc0115dbe5495eb54d4591ffacf924eca1

Files

a2efedc37c11e27298e239279ae54dcc0115dbe5495eb54d4591ffacf924eca1
.exe windows:4 windows x86 arch:x86

0e199908db7d21dfe8f94e97b0e18f86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDirectoryA
GetProcAddress
SetErrorMode
MultiByteToWideChar
LoadLibraryA
ExitProcess
GetModuleHandleA

user32

EnumWindows
wsprintfA
MessageBoxA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

msvcrt

printf
_except_handler3
malloc
free

Sections

0000001
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

0000002
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

0000004
Size: 60KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

0000005
Size: 5.1MB - Virtual size: 5.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE