1e488daf2d77ee6aaca46ff3afaa2b4b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1e488daf2d77ee6aaca46ff3afaa2b4b
Size

43KB
MD5

1e488daf2d77ee6aaca46ff3afaa2b4b
SHA1

cadce25d7ec82c69588fbc4c8001f2e8ca9a1c43
SHA256

3c084a9a15db7dd1939ebdc6c835c7f0c170882ff04159299978e96a602ad782
SHA512

9fc8aef71891fbb6ccdc5b9d13eb1f439f87cc6fed7a44b03f540687b0974813b749d4991a77cfcd4ab47f6e69e4a125afcc5e6664ee8e8449fb8b7cde440b56
SSDEEP

768:wX7lELgw7q/JXfqgz6mmjuMoOHiBkXbt72zGo8hkp4nYBE6SkwwaMffgbSuxmyy:yJE5yJSW6uMoOHiBkt2ahkBdOwaMffgT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1e488daf2d77ee6aaca46ff3afaa2b4b

Files

1e488daf2d77ee6aaca46ff3afaa2b4b
.exe windows:5 windows x86 arch:x86

0f04d7acad0ba20d187f899025e88202

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MoveFileExW
MultiByteToWideChar
FlushFileBuffers
GlobalLock
FindClose
CreateFileMappingW
lstrcpynW
EnterCriticalSection
ExpandEnvironmentStringsW
FindFirstFileW
CopyFileW
HeapFree
lstrcmpiA
ReleaseMutex
GetDriveTypeW
GetCommandLineA
SetThreadPriority
GetTempPathW
CloseHandle
GetTimeZoneInformation
CreateThread
CreateEventW
HeapAlloc
GetCurrentThread
SetEvent
SetFileTime
UnmapViewOfFile
SetEndOfFile
GetModuleFileNameA
SetFileAttributesW
CreateMutexW

user32

GetMessageA
SetProcessWindowStation
DrawIcon

Sections

.dsrmv
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.avkrqr
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zapad
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ