Malicious_aebdafd05f80987f9a10cffd562cb2b3ac5df8551c0bff4be7abd8fdeb160c5b[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Malicious_aebdafd05f80987f9a10cffd562cb2b3ac5df8551c0bff4be7abd8fdeb160c5b.exe
Size

44KB
MD5

ae139d1e37bced806174a1c1720c6cd0
SHA1

eb8461c2d869a87cf710d19bcd666f88011eeb12
SHA256

aebdafd05f80987f9a10cffd562cb2b3ac5df8551c0bff4be7abd8fdeb160c5b
SHA512

e57822b14bc5797f9b8b469178473bd5f4539f2260940b7639510154478d40ae51da5def1a6dba48de9ef5910f24ff8ae1baf35b0d5fcbd7683ef418be661e6c
SSDEEP

768:9sJy7r3KGnLDGCMzkeeLP4IiVX5pS2Y+DKcG5wlUEdRRv:9sJer3Pn3i99VXXRY+DKcRUEN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Malicious_aebdafd05f80987f9a10cffd562cb2b3ac5df8551c0bff4be7abd8fdeb160c5b.exe

Files

Malicious_aebdafd05f80987f9a10cffd562cb2b3ac5df8551c0bff4be7abd8fdeb160c5b.exe
.dll windows x86

c4b15573a7231e184cf6e5500dbd1df6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateThread
LoadLibraryExA
GetLastError
GetModuleFileNameA
CreateMutexA
GetCurrentProcessId

msvcrt

strstr
sprintf
memset
free
_initterm
malloc
_adjust_fdiv
_strlwr

Sections

.text
Size: 1024B - Virtual size: 604B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 572B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 300B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 294B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ