8afad4b4cd62e6abbb8672408e4b97d35c741f38af3771de347195309ea15b6c | Triage

Sharing

General

Target

8afad4b4cd62e6abbb8672408e4b97d35c741f38af3771de347195309ea15b6c
Size

23KB
MD5

19bd8e548dfb96d7aafbc05b43d48662
SHA1

3f512213b699f0c66d8ccefc0e72fa7130222ab9
SHA256

8afad4b4cd62e6abbb8672408e4b97d35c741f38af3771de347195309ea15b6c
SHA512

050bdb43f5cc54776616e7cfe7febfa70cbf9273d0a8be70f50a71d24aa84adb55788bd43dbc29f34d2e13ddb1f28c29a83c2713e91d16210a71c0a8e2e1bbbe
SSDEEP

192:aEziYIk7VQ5ANWF5shCC0dbYzfmuPMoDlUvDje2A2z4puuLTEef3sfrpEBgOWta9:aENVb0db0+69lCS2N4pkGkNg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8afad4b4cd62e6abbb8672408e4b97d35c741f38af3771de347195309ea15b6c

Files

8afad4b4cd62e6abbb8672408e4b97d35c741f38af3771de347195309ea15b6c
.exe windows:4 windows x86 arch:x86

e74c31d11e7570d6571da70016af25f6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DefWindowProcW
PostQuitMessage
SendMessageW
CreateWindowExW
ShowWindow
UpdateWindow
LoadCursorA
LoadIconA
RegisterClassExW
LoadStringA
GetMessageW
TranslateAcceleratorW
TranslateMessage
DispatchMessageW
DestroyWindow
LoadAcceleratorsW

kernel32

GetModuleHandleA
ExitProcess
GetCommandLineA
HeapAlloc
GetProcessHeap
lstrcpynW
CloseHandle
GetStartupInfoA
ReadFile
CreateFileMappingW

comctl32

InitCommonControlsEx

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 1002B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ