Step_One_2_(OVERLAPPED)[.]exe | Triage

Sharing

General

Target

Step_One_2_(OVERLAPPED).exe
Size

2KB
MD5

b889e38bdeb64986fdcef3a712f01ad7
SHA1

2f886712d5dfdab48fc2f1fec11f26232be325a3
SHA256

299695ccd1f259c872b92f1727415e01b7008f72f78326b8d5c1fc3337da085b
SHA512

05624a439a47da6fc5675689f15738793027db3824e31a0adeb24b6bfe677a5f4e715dbfb6aa2fb307fe3e5a0e0c84521f506d823e9e1e95b854ce0e10a5f16e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Step_One_2_(OVERLAPPED).exe

Files

Step_One_2_(OVERLAPPED).exe
.exe windows:4 windows x86

4e11dedda74fdca2df7d4eb456dd49a4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadIconA
PostQuitMessage
RegisterClassA
LoadCursorA
TranslateMessage
UpdateWindow
GetMessageA
DispatchMessageA
DefWindowProcA
ShowWindow
CreateWindowExA

gdi32

GetStockObject

kernel32

ExitProcess
GetModuleHandleA

Sections

.text
Size: 512B - Virtual size: 386B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 486B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 57B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE