2edd4a12dc15be00a756f46dae707915 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2edd4a12dc15be00a756f46dae707915
Size

623KB
MD5

2edd4a12dc15be00a756f46dae707915
SHA1

8c70898a2f6b14b33c3347dd4bc8a7af81242de0
SHA256

e96db66dd069d1d134cf76d6f79c1d1035d87b48ad575683476608a1f07640f6
SHA512

c142b21412c0515512974809c41bc5edd721db8f1179d7b6825e2b4e3218fc711ba7e91d2eda7946f06bbcf10f601aa76020a97f51ef16a55d01af47fb6d57d8
SSDEEP

12288:tF37ai8nKMqoLF5T0JA0OBzN/pXZJ2BqqOjKnOyFdKEssGd09Me9yl88:tx7Xw5T0JuN/pXZEUnK/LGwgq8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/kglcjtsrh.exe

Files

2edd4a12dc15be00a756f46dae707915
.rar
lcg.jukebox.keygen-tsrh.zip
.zip
kglcjtsrh.exe
.exe windows:1 windows x86 arch:x86

f746a992cb110228cb9b1fa4c15477d0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

crtdll

_iob

Sections

.text
Size: 17KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE