dc22a6ccc6866ec10032d9a3780184ce28dd31de0b193a7fb2932225fc381733 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dc22a6ccc6866ec10032d9a3780184ce28dd31de0b193a7fb2932225fc381733
Size

348KB
MD5

32e6a0a5d2a29cde73f737c7c539c4aa
SHA1

3bf7852b5e3f85e8e3696d1c097b61a70e72d74c
SHA256

dc22a6ccc6866ec10032d9a3780184ce28dd31de0b193a7fb2932225fc381733
SHA512

79d304d7e64f4af0b3bceba85962c57951754aaf25420225a55723c5e6c8c5695752f724c67e363a767d329f28423d668d4608c5514c9017b700f510943044e9
SSDEEP

6144:bi/1iE3R1FC5ZB2oJ3bo9gSHfjCz4jFby14nGfjrGHEFdkf8pfIThCmvSSAdn7TO:bgsEh1F4GRLCzAWG2JkIwFCm6Xn7S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc22a6ccc6866ec10032d9a3780184ce28dd31de0b193a7fb2932225fc381733

Files

dc22a6ccc6866ec10032d9a3780184ce28dd31de0b193a7fb2932225fc381733
.exe windows:5 windows x86 arch:x86

82b3a36decf28ebda90573542c4dc5af

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

LoadMenuW

advapi32

RegCloseKey

Sections

Size: - Virtual size: 160KB

IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 93KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE