challange_Benign_ce3c8d4778e7e09a2dd672e0c7119fcd45e36fdcacf8d9eddd47ce716c109ab2[.]exe

General

Target

challange_Benign_ce3c8d4778e7e09a2dd672e0c7119fcd45e36fdcacf8d9eddd47ce716c109ab2.exe
Size

28KB
MD5

70e8767c544c71604d10dcc6d98d9665
SHA1

eceabb1dabfabf15df864cd8f3c2ea87b88a9f09
SHA256

ce3c8d4778e7e09a2dd672e0c7119fcd45e36fdcacf8d9eddd47ce716c109ab2
SHA512

1413bb42108ae17c2f947ea4bbbd8a6b6f657e5ab9fbe05fab3d9f8ba4d475735ca203fd4ed4e029e5c35f8c1a9a945e6f89d4646434fe2909edc6475202779b
SSDEEP

384:Ihbbfp55NniYG3Uo9T0lfy+cer10V+B1bSgA5zSeg7V:IV+90lFcE7O/Seg7V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
challange_Benign_ce3c8d4778e7e09a2dd672e0c7119fcd45e36fdcacf8d9eddd47ce716c109ab2.exe

Files

challange_Benign_ce3c8d4778e7e09a2dd672e0c7119fcd45e36fdcacf8d9eddd47ce716c109ab2.exe
.exe windows x86

74a75dc13de91f71e491e0c2e9919855

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetFileType
LCMapStringW
VirtualAlloc
GetOEMCP
GetACP
GetCPInfo
WideCharToMultiByte
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
MultiByteToWideChar
LCMapStringA
GetProcAddress
GetStringTypeA
GetStringTypeW
GetLastError
LoadLibraryA
GetStdHandle
SetHandleCount
FreeEnvironmentStringsW
LocalFree
FormatMessageA
ExitProcess
GetVersion
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
UnhandledExceptionFilter
GetModuleFileNameA
HeapAlloc
TerminateProcess
GetCurrentProcess

user32

LoadCursorA
KillTimer
PostQuitMessage
SetTimer
PostMessageA
BeginPaint
EndPaint
DefWindowProcA
wsprintfA
InvalidateRect
SendMessageA
LoadIconA
RegisterClassA
CreateWindowExA
GetDC
GetSystemMetrics
MoveWindow
ReleaseDC
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

SetTextAlign
TextOutA
SetTextColor
MoveToEx
LineTo
SelectObject
GetTextExtentPoint32A
CreatePen
GetTextMetricsA
DeleteObject

shell32

ShellExecuteA
SHGetFileInfoA

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ckxlvbj
Size: - Virtual size: 72KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

74a75dc13de91f71e491e0c2e9919855

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 9KB - Virtual size: 10KB

.rsrc Size: 2KB - Virtual size: 30KB

ckxlvbj Size: - Virtual size: 72KB

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 9KB - Virtual size: 10KB

.rsrc
Size: 2KB - Virtual size: 30KB

ckxlvbj
Size: - Virtual size: 72KB