16e0660525a9e6250e7d36dfc4b3c6d5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16e0660525a9e6250e7d36dfc4b3c6d5
Size

488KB
MD5

16e0660525a9e6250e7d36dfc4b3c6d5
SHA1

4f897977e25c97f85428a1c08ee81754fcd9cfcb
SHA256

b0fdee7aa6d28d71374697c07f626c651f7684c2eaafb4784aa57158b0c60876
SHA512

d9b20ebdbc9aaad5cf03a00323ad8f04a02b376d7ccc39505af51e228868057fd731e77a8d10b4879f52a253f31f641914dba784d78c8f5fcd699d7bbefdeb98
SSDEEP

12288:iCn9d3sHJ1yDNHEBW+0sIz0Rtof4pWsMyVSrcKzIND3bHWxX:l3ajyOBRRIbyWcJDa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16e0660525a9e6250e7d36dfc4b3c6d5

Files

16e0660525a9e6250e7d36dfc4b3c6d5
.exe windows:4 windows x86 arch:x86

1cb022cd90d8ebc7bf9912954c524069

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

ZwSetBootEntryOrder
NtOpenSection

user32

GetDesktopWindow
DdeGetLastError
GetMessageExtraInfo

kernel32

RemoveVectoredExceptionHandler
GetSystemDefaultLangID

Sections

.text
Size: 479KB - Virtual size: 480KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 199B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE