e67e7aed367fc1376b321dfab46dda230b02db01ef0de8e7b80ab54face8a036 | Triage

Sharing

General

Target

e67e7aed367fc1376b321dfab46dda230b02db01ef0de8e7b80ab54face8a036
Size

30KB
MD5

5f2be2ba246216ce178781b3f3a9d2bb
SHA1

08fc8a1f06ce75d59f22d521d01993608e9ee5c3
SHA256

e67e7aed367fc1376b321dfab46dda230b02db01ef0de8e7b80ab54face8a036
SHA512

4b63885ad7912cc15790d25119c6f0810fe1314457519b5b0e33248435a2fb67c87535b0c4da233443a6a005918e3c379d77f44ef68027a441928ec8eaa832e5
SSDEEP

384:JaBJTUjE7dPcmzh3AB3q2p+UwVYly7cNKX9uCpPICbpwLcDQm9bkbhtBFn:JK9UjEB0mkHjly7cNO95wwD7q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e67e7aed367fc1376b321dfab46dda230b02db01ef0de8e7b80ab54face8a036

Files

e67e7aed367fc1376b321dfab46dda230b02db01ef0de8e7b80ab54face8a036
.exe windows:4 windows x86

d5201b35184f2af59bba41345786528e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

VariantTimeToSystemTime

kernel32

LoadLibraryA
GetDateFormatA
GetTimeFormatA
GetLocalTime
GetProcessHeap
GetModuleHandleA
ExitProcess
HeapAlloc
HeapReAlloc
HeapFree
IsBadReadPtr
LocalFree
WideCharToMultiByte
GetCommandLineW
GetModuleFileNameA
CloseHandle
WriteFile
CreateFileA
GetPrivateProfileStringA
FreeLibrary
GetProcAddress
LCMapStringA

msvcrt

strncmp
__CxxFrameHandler
??3@YAXPAX@Z
??2@YAPAXI@Z
atoi
_ftol
sprintf
strncpy
modf
strchr
memmove
malloc
free

user32

wsprintfA
MessageBoxA

shell32

CommandLineToArgvW

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE