SandboxTestPacked_Timing_TimeSetEvent[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SandboxTestPacked_Timing_TimeSetEvent.exe
Size

122KB
MD5

391d192f4a4b5258de18b23d41311b47
SHA1

ccd0d522577b03f6dcb96f921e9b2c119c7d72cf
SHA256

fe92658dfc137b61de825761ebc5834658b8c2c5fe838ff39ff5f9902a9f433d
SHA512

2e6af73bddc804ebe50428a725b4c1cd17d75052ab51c4b186a6c0037723e5012a38d916b124d0cb4670d31eec1f26866830089b5907d9761821ca5f6e7b429a
SSDEEP

3072:EVQhbmL1k0cnjrtWpIODEHDhJ6IsokQdOajxC87SChp/:EVQhbm41FOwHDrVJPdOAZh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SandboxTestPacked_Timing_TimeSetEvent.exe

Files

SandboxTestPacked_Timing_TimeSetEvent.exe
.exe windows x64

40973118a5deac950a93d605e778558a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

user32

GetSystemMetrics

ws2_32

gethostbyname

winmm

timeSetEvent

Sections

.MPRESS1
Size: 117KB - Virtual size: 324KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 472B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE