aa3c3863446db6a21f6f296a7c8671aa8e8df75e4899af39fde400182c4d0e5f | Triage

Sharing

General

Target

aa3c3863446db6a21f6f296a7c8671aa8e8df75e4899af39fde400182c4d0e5f
Size

361KB
MD5

93ff3e682a69781cf12b88a1892066ae
SHA1

934a2fd88c884f7d6c544224594ef0e853efc1fe
SHA256

aa3c3863446db6a21f6f296a7c8671aa8e8df75e4899af39fde400182c4d0e5f
SHA512

6e508d8442462e16cbc693c2b3794b2cf312fc65049d2e5f11f405222161ef013ff912ee7c71ac17cd9138dfe7210d587e12730f84c1eecfb17eb81d847599fe
SSDEEP

6144:hNM4IM8m9xa2DXkRh52DmuGAkUMRJcqUTiKb1UlfC884eRIEkxAgU+CZvz2jFtCH:5IMD9r7xDmFYMRmqsH1+q8De/kxAg3Cn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa3c3863446db6a21f6f296a7c8671aa8e8df75e4899af39fde400182c4d0e5f

Files

aa3c3863446db6a21f6f296a7c8671aa8e8df75e4899af39fde400182c4d0e5f
.exe windows:5 windows x86 arch:x86

92df33db5fda8c071176a59ae7c1c189

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

GetDlgItem

advapi32

RegCloseKey

Sections

Size: - Virtual size: 172KB

IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 93KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE