37153e35a3ea71efc0533e226277ffc6ee82b931ece1091da2ab070d5d980df7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

37153e35a3ea71efc0533e226277ffc6ee82b931ece1091da2ab070d5d980df7
Size

349KB
MD5

d4a016ce22a0ae7017c72866c098fec7
SHA1

761480a16728d50cff64c413d4668e9bc31dcf10
SHA256

37153e35a3ea71efc0533e226277ffc6ee82b931ece1091da2ab070d5d980df7
SHA512

0cefe95f6981fa00a01c11cc1e93f58a0d8c8b2496f0b713150c70de9bdff784309188ea5e67f13cf7fb60e2cabfac86c36ebbdb9355b02c62f44389deea6be5
SSDEEP

6144:Cq0O6pommDhVWBE8Hqlp82VTp3OR42OLT5l5dq505fnKOIEpKem1:Cq0+mmJOqlQQJSG/KO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37153e35a3ea71efc0533e226277ffc6ee82b931ece1091da2ab070d5d980df7

Files

37153e35a3ea71efc0533e226277ffc6ee82b931ece1091da2ab070d5d980df7
.exe windows:5 windows x86 arch:x86

82b3a36decf28ebda90573542c4dc5af

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

LoadMenuW

advapi32

RegCloseKey

Sections

Size: - Virtual size: 160KB

IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 93KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE