easy_Malicious_05dfd13eeffa210ee6ad5f4101740fe1c942cc0bdde6ca5eda63f90d19283767[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

easy_Malicious_05dfd13eeffa210ee6ad5f4101740fe1c942cc0bdde6ca5eda63f90d19283767.exe
Size

56KB
MD5

ad8a7d00e2d74d7255c20b41b47bf1c0
SHA1

a00a3bc3ad844c47f32573c97b0a443172dfc50b
SHA256

7b61f1039edc9f519a9aa907dec2a15f223dc21b0d136a46c072a92c33d06515
SHA512

a4d1f4a7932b5d62c3ed141c27dcd2ebdd21e7b63edc0d8382bab7b45b70dcb4752efa5d921309c610ea48238bd35c1a92fa5393f41fc3ab9f82251e4210899a
SSDEEP

1536:CXao6kk2Ptv/gcgMVKjuLaboII5V45oB/Q3T0:waobVPpYcgMgCcBI5S5gow

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
easy_Malicious_05dfd13eeffa210ee6ad5f4101740fe1c942cc0bdde6ca5eda63f90d19283767.exe

Files

easy_Malicious_05dfd13eeffa210ee6ad5f4101740fe1c942cc0bdde6ca5eda63f90d19283767.exe
.exe windows x86

97217c6e3dfcdee0c07935cd33ac6707

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileSectionNamesW
SetCommConfig
ClearCommError
TransactNamedPipe
GetFullPathNameW
GetCurrentDirectoryW
UpdateResourceW
GetPrivateProfileSectionA
lstrcpynA
RequestDeviceWakeup
GetDiskFreeSpaceExA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE