66e258142d974b2cbede0c80d0b1d41a | Triage

Sharing

General

Target

66e258142d974b2cbede0c80d0b1d41a
Size

484KB
MD5

66e258142d974b2cbede0c80d0b1d41a
SHA1

911b14b4dc5b7ae55755f5a152aa7da20a01b481
SHA256

6332c6b544cba804d81b7ae44c91adf1d1e0813dd354f29a007ef49634321c6b
SHA512

f3b320f380c1e484272ba13c041a9360cb3c5a3a8a175ced03e0a977e0c4e9d977faaa57cbcd83b7d64f16e1a064fd99b236bf03c2f76b1d6760990d13a3437c
SSDEEP

12288:ChmWWMSyUlBP3/hEXW6rYEOw1fJqNMamICl/lDZHlpe:LWWMpG/hEmuYErfNpls

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66e258142d974b2cbede0c80d0b1d41a

Files

66e258142d974b2cbede0c80d0b1d41a
.exe windows:4 windows x86 arch:x86

aa1b12ce45e01d5d85be708e9a644eff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

ElfReportEventW

kernel32

OpenMutexW

user32

GetInputDesktop
GetDesktopWindow

Sections

.text
Size: 481KB - Virtual size: 484KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 316B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE