Energy[.]exe | Triage

Sharing

General

Target

Energy.exe
Size

10KB
MD5

27def401b53e00de725c0572da3c8bdc
SHA1

fb7d6f3cc747940c93a8bc126cb2c3c818da3eb6
SHA256

c68bc7da74c6a04e433388925d6e6dae29453c9db73e1170ca32e46dbd8792ca
SHA512

46e53ce3343deaed059043a3849939f3d7cee2c60a654d565ab065e76915ac6f76582159e6c00c486bcc1321f2ad29773cdf6261d1dadcb0b24cfd9278805ed1
SSDEEP

192:nobIdELcwMDaZLY72rt37XStL4jOEEw5HhULWjuRYgMk/XLg5y1:obISLcw0am7Et3DStkDj5HhUL4UbUQ1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Energy.exe

Files

Energy.exe
.exe windows x86

5b50c62fb0f4364c2d15e846bc2ba9a3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress
GetModuleHandleA
LoadLibraryA
ExitProcess
VirtualAlloc
VirtualFree
CreateMutexA

user32

MessageBoxA

Sections

9286742
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5808079
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

9079359
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE