352be2143d7593baec1216e4ce9e19b0N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

352be2143d7593baec1216e4ce9e19b0N.exe
Size

34KB
MD5

352be2143d7593baec1216e4ce9e19b0
SHA1

a576c574cfab60a37c222a4dc5365766f61c9d09
SHA256

04448fef5b14a404ac6bb432b68a08d87c4624a86e11100e4d4ff272ac65af7f
SHA512

dfd87efbadad9138b85e14b28434c35b2ea1add444f6d924d0218c9dec6a355c08e97461630866d580572da9178d6b662ec54d82f6d0e2d0c4fe7532252a0058
SSDEEP

768:tdy7mf1HnmEIHYBl7Q4XXqIDwWbKk4BKziVlSJY:t87mJmEIHYjs4XXqIDwWbKk4BKW+JY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
352be2143d7593baec1216e4ce9e19b0N.exe

Files

352be2143d7593baec1216e4ce9e19b0N.exe
.exe windows:4 windows x86 arch:x86

a49a3979dbc627e3b61ffc6c7272198e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndDialog
SendMessageA
DestroyWindow
DialogBoxParamA
DefWindowProcA
BeginPaint
EndPaint
PostQuitMessage
CreateWindowExA
ShowWindow
UpdateWindow
LoadStringA
LoadIconA
TranslateMessage
GetMessageA
FindWindowA
RegisterClassExA
LoadCursorA
DispatchMessageA

kernel32

GetStartupInfoA
ExitProcess
GetCommandLineA
HeapAlloc
ReadFile
SetLastError
GetLastError
lstrlenA
lstrcpyA
GetModuleHandleA
LoadLibraryA
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
GetProcessHeap
ResumeThread
CreateThread
CreateDirectoryA

gdi32

TextOutA
GetStockObject

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ