1aec7b69d62d938e41e2c94a4d6d89e5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1aec7b69d62d938e41e2c94a4d6d89e5
Size

16KB
MD5

1aec7b69d62d938e41e2c94a4d6d89e5
SHA1

aa4d0870b313bfb34185e8f82fdbee2e43ce6ecf
SHA256

60acfe803bd149d9328fe8c64b688e30251e49a0c37257e767f7fd5ad3075adc
SHA512

cb0cd69157ae353a25a2cb997dc6737863ee7b48a05a337d8c7a36bc5362b4560b19fbf328780c5eecfc8b30478786542937e816bead1c7de8ab9c55e4c9a0d2
SSDEEP

192:FCpc0m9aQYZn36vFuKkA7r4Q1X1mMIVLuYh8pW5JHpEJEKRwotKBuTl/htNvGnT:wmkQ6C6AnB1mPcY6pypEJhPGo/htNOnT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1aec7b69d62d938e41e2c94a4d6d89e5

Files

1aec7b69d62d938e41e2c94a4d6d89e5
.exe windows:4 windows x86 arch:x86

eef61ab2ac09556b84d0d1d4cfc69dc1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetModuleHandleW
FreeLibrary
GetCommandLineW
GetLastError
LoadLibraryW
lstrcpyW
GetModuleFileNameW
LocalFree
FormatMessageW
GetStartupInfoW
GetProcAddress

user32

DispatchMessageW
GetMessageW
MessageBoxW
TranslateMessage

Sections

.text
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 540B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE