af444f3e04fcb2da624d020228c5a2088476d27715ddb9089ceac4cb8b6f602f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af444f3e04fcb2da624d020228c5a2088476d27715ddb9089ceac4cb8b6f602f
Size

63KB
MD5

a3b2ff35cedfd274db4ae3154a9624b5
SHA1

740c406b70ffca710605024f22da154ee4342042
SHA256

af444f3e04fcb2da624d020228c5a2088476d27715ddb9089ceac4cb8b6f602f
SHA512

30e9febfd37e1edf3462535ce80a134788d9d2d44eb31b65d331de8485a76ce7db899f7866f0b39a003a19382147b325037519324085559d08b0302da8764952
SSDEEP

1536:ob+1ewp1eJuv/u+d4IJqvcWJSOL7030NCfQcaMztjp1rD2:g+0zJDmaUWOEN9utpU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af444f3e04fcb2da624d020228c5a2088476d27715ddb9089ceac4cb8b6f602f

Files

af444f3e04fcb2da624d020228c5a2088476d27715ddb9089ceac4cb8b6f602f
.exe windows:4 windows x86 arch:x86

5263ebf0d8b754a2287de56b20ef9304

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CommConfigDialogA
SetStdHandle
WerRegisterFile
GetCPInfo
CancelThreadpoolIo
Heap32ListNext
CopyFile2
LoadAppInitDlls
GetLongPathNameTransactedW
MoveFileWithProgressW
RegLoadKeyA
SetLocalPrimaryComputerNameA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE