easyMalicious1c2f56c34341[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

easyMalicious1c2f56c34341.exe
Size

62KB
MD5

d75ee31dc68b2e195b8ab31b66af1620
SHA1

b8e84bee1689122d223e4a55a58b3e12844737f7
SHA256

18c02ff32d44d59cf27913706cd81d89ad22029bdd3ad09ffa72aea5d1b7162c
SHA512

591059bdb22834af583749bc6fdc69530ea3479ab09f06edd7d952b1ed356e3741aa05bb66a80467cfd4920fed3256e14c1c56ae8779480241045c8920e46cca
SSDEEP

1536:HWEq64SBfm3Gk4lnQLGKqTwnTsEP/ueHD0/rEvixc:HldB+GTnHKmoggcrZxc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
easyMalicious1c2f56c34341.exe

Files

easyMalicious1c2f56c34341.exe
.exe windows x86

d7afddd386b65abf27b763409cb72986

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BindIoCompletionCallback
_llseek
IsBadWritePtr
WriteConsoleInputW
DefineDosDeviceW
IsDBCSLeadByteEx
HeapCompact
LocalCompact
OpenThread
AssignProcessToJobObject
CreateJobObjectA
GetPrivateProfileStructW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 47KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE