1ee1c45925f02d57f897bc47c1578301 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1ee1c45925f02d57f897bc47c1578301
Size

15KB
MD5

1ee1c45925f02d57f897bc47c1578301
SHA1

881d1a627e4417b156a86f7e2d5752ed450ffc51
SHA256

e3831549b7334e56534fd8310a5c7223511da43c94a0435caf5b555de8353484
SHA512

c69d7cac714a1973282ef3c0487a3e7526825895b7396fc5d70cc6f0509ae64ef9fd994e2b21731d69f6c0335829914dfe6d18b3fe2742dd0aa0bbf0728f934b
SSDEEP

384:n6u4e7Q6X8s3ZqIEJQ4VIPqfmmmmZV+Gew:n6uD7Qc8spqIs/VApw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1ee1c45925f02d57f897bc47c1578301

Files

1ee1c45925f02d57f897bc47c1578301
.exe windows:1 windows x86 arch:x86

675d37be4884457575cf6148ace2756a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetCurrentDirectoryA
CloseHandle
RtlUnwind
Sleep

user32

MessageBoxA
wsprintfA

advapi32

RegCreateKeyExA
RegSetValueExA

crtdll

__GetMainArgs
exit
printf
raise
signal
strlen

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88B - Virtual size: 88B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 416B - Virtual size: 416B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 692B - Virtual size: 692B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE