Step_One[.]exe | Triage

Sharing

General

Target

Step_One.exe
Size

8KB
MD5

43558a16220b479e5dcab83551df641a
SHA1

4fedc51fe36c26112df4a5020795d16ac4d1057a
SHA256

9b4b3ba437e19c1bc17a23f4ba3b30f72ed1c3a7de2ba2a65bc433a3fbfd0e68
SHA512

9ce64fd9be91cae947be68e3583ccf4b6bbdfad0a967df2ea24cea90a3368bd1e15b80bb2737f8545bde84858d8178897ce437379413619330188e23110a98da
SSDEEP

48:yYslb9OGIQo8vuvihovViUdNaSBDrN9mDzrm1sFhATnV5cdsSMENssQ888b888gg:BQoyq/NaSdh9omyMZ1d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Step_One.exe

Files

Step_One.exe
.exe windows:4 windows x86

8b026b2bc31b7e97c154b1d4f50b5697

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterClassExA
ShowWindow
TranslateMessage
UpdateWindow
BeginPaint
EndPaint
FillRect
GetCapture
PostQuitMessage
GetParent
InvalidateRect
PostMessageA
RegisterClassA
ReleaseCapture
SetCapture
SetWindowRgn
WindowFromPoint
LoadIconA
LoadCursorA
GetMessageA
DispatchMessageA
DefWindowProcA
GetCursorPos
CreateWindowExA

gdi32

CreateRoundRectRgn
CreateSolidBrush

kernel32

ExitProcess
GetModuleHandleA
Beep

Sections

.text
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 838B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 372B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ