15da42a03dd8ed362059a7b4b5be70da | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15da42a03dd8ed362059a7b4b5be70da
Size

241KB
MD5

15da42a03dd8ed362059a7b4b5be70da
SHA1

934038e7015940a5ab2c902c9b200a6f7066f1c4
SHA256

77efcad7daee1679b16dd8e2617cae884908fb2c025a17bbdda37eb8c67def20
SHA512

8103adbeee3e2007d0ce154980daee7b064982c247939e3d2f677f6b11adf95b3698449015b17e0c6c34b344d9774bbf7cb845569cb33e1dc259d478e1c89d2f
SSDEEP

3072:qYTJX5IXj+fvLerJpSnMZ+YRKtfoYblXtHtmGaZZMMJpNZLV5BhwLXOx:qypIXavLsJpIMZ+RvblNFa/fxXwDO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15da42a03dd8ed362059a7b4b5be70da

Files

15da42a03dd8ed362059a7b4b5be70da
.exe windows:5 windows x86 arch:x86

15bcb02bc71e21983616c98c5c7f8492

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyA
RegCreateKeyW

kernel32

ExitThread
ReadFile
ExitProcess
HeapFree
GetStdHandle
FlushFileBuffers
CreateDirectoryA
lstrlenA
GetCPInfo
GetLocalTime
lstrcmpA
DeleteFileW
GetFileType
GetCommandLineA
DeleteFileA
OpenFileMappingA
CopyFileA
HeapAlloc
GlobalFree
CompareStringA
WriteFile

user32

CopyRect
GetScrollInfo
GetWindowTextLengthA

Sections

.ac7hb
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.6ddb
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.c461h
Size: 202KB - Virtual size: 578KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.8dh23
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ