9a5a4934dc25a6e55fa7afacae0c7550d66e867e62bea9b9508fc8dc46145b9f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9a5a4934dc25a6e55fa7afacae0c7550d66e867e62bea9b9508fc8dc46145b9f
Size

1.3MB
MD5

d389f7cf8fadb6252c2709981aa2b867
SHA1

acf1143326b4a2b0fc037ef2f0ec4d92fcf14139
SHA256

9a5a4934dc25a6e55fa7afacae0c7550d66e867e62bea9b9508fc8dc46145b9f
SHA512

40d14a723bb77ee1f08e85053e2c1bd6efa1f99e431a122c718abaecdd98b48c75579e674204f3abd9352a7dbf599fdf2fcee7e17a4fd35a06557e779c94fbd1
SSDEEP

24576:ZyLKR+LRgmFr4QV/pJWdiKT69iUk+hfXNQF0SVfKcZgHM7sgeZzw96LbPd11:kLyWR3J35sBOiUkiNQF3VfF7stZsSPd7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9a5a4934dc25a6e55fa7afacae0c7550d66e867e62bea9b9508fc8dc46145b9f

Files

9a5a4934dc25a6e55fa7afacae0c7550d66e867e62bea9b9508fc8dc46145b9f
.exe windows:4 windows x86 arch:x86

a66c01ada2e15577e562b2cf5a522073

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

DialogBoxParamW

advapi32

RegCreateKeyExW

comctl32

ImageList_Destroy

Sections

Size: - Virtual size: 1.3MB

IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 93KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE