38e2e621598702cd37731440444d631ab9d799c6876765dbd418403033b94bf0[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

38e2e621598702cd37731440444d631ab9d799c6876765dbd418403033b94bf0.exe
Size

14KB
MD5

eb096dfb6d3b24215a3ff1cf1a0a6ff4
SHA1

22cbf7d400f69105b0191d3cd7b62a7e64a776c0
SHA256

38e2e621598702cd37731440444d631ab9d799c6876765dbd418403033b94bf0
SHA512

4672ca88212c9f4fe31d36b9f73d0df2524c4f1860cc845aff4dc4a3ba7d1dc7248de1469768a00bb4a5770c96797e1790f209b6327043b26534adff36be6351
SSDEEP

384:4x2SOwrxxKXF6nBhM2IuDBbiTYfdCfLjBF3hJQ4bxu4:DSOwrxxKXF6nBh7VbiUUTdNhJQyx7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38e2e621598702cd37731440444d631ab9d799c6876765dbd418403033b94bf0.exe

Files

38e2e621598702cd37731440444d631ab9d799c6876765dbd418403033b94bf0.exe
.exe windows:1 windows x86

105093fc2cd4f6885d10a45bf3cecfc1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetLocalTime
GetModuleHandleA
RtlUnwind
RtlZeroMemory

user32

SetWindowTextA
BeginPaint
EndPaint
UpdateWindow
RegisterClassA
GetMessageA
TranslateMessage
DispatchMessageA
SendMessageA
UnregisterClassA
PostQuitMessage
GetSysColor
ShowWindow
CreateWindowExA
DefWindowProcA

gdi32

GetStockObject
SetPixel

crtdll

__GetMainArgs
exit
free
malloc
raise
signal
strchr

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 100B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE