d427e61e159eaf3d37d58afbe33bc35edfe857b3d0614227bb0466b94c8fade0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d427e61e159eaf3d37d58afbe33bc35edfe857b3d0614227bb0466b94c8fade0
Size

25KB
MD5

68e3fdb8ba96696d71d893c9f433a16e
SHA1

f6820551f5fec539b1dab4087f77721e18963aea
SHA256

d427e61e159eaf3d37d58afbe33bc35edfe857b3d0614227bb0466b94c8fade0
SHA512

9d8433452102f51df31c894d181c8174896a5f92a32c5f7845fb0160de4eea81149c73bc218a599d7c75e830eae846f2f75423222e4b3bf4c86d3d002615ce3c
SSDEEP

384:kuIb/t1t+IzCNWJ1QJKrSSZTyroVDINoaFJWE/GGxmNX9bB:kuI1vbbrSSA2SW1/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d427e61e159eaf3d37d58afbe33bc35edfe857b3d0614227bb0466b94c8fade0

Files

d427e61e159eaf3d37d58afbe33bc35edfe857b3d0614227bb0466b94c8fade0
.exe windows x86

e1d58fe9cffe0f491386c9d256e5cfdb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetTickCount
GetModuleFileNameA
GetModuleHandleA
GlobalAlloc
GlobalLock
WriteFile
ReadFile
CloseHandle
SetFilePointer
CreateFileA
GetFileType
GetStartupInfoA
GetStdHandle
GetCommandLineA
SetUnhandledExceptionFilter
ExitProcess

user32

MessageBoxA

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 300KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 696B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ