1d74be7bda8ca18b5148ad593ec18133 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1d74be7bda8ca18b5148ad593ec18133
Size

176KB
MD5

1d74be7bda8ca18b5148ad593ec18133
SHA1

08cee36a631cc779183705e3210cec73c4ba4548
SHA256

b794a25234b1c0d2b939462168b73d1aa35e6edbd283471496eccf09b9480cf1
SHA512

cd41ee167435f690bd767ee3d3369aa4433a8c35e9c91f238713628c57abb104d60e6d8e4d001ff50316ada2f77acb61d2983eaae288089930757fa17209f54c
SSDEEP

3072:eVeeqvHh0UR126V5UWBYnUOu2CmERi3+yKIm80EA9PuxPIBxnZYYqquxLWxOqGb:kbiP/jdEUOumERi3+Hxagms4xUH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1d74be7bda8ca18b5148ad593ec18133

Files

1d74be7bda8ca18b5148ad593ec18133
.exe windows:4 windows x86 arch:x86

fd3fd49c9316f02076864fe6b5156987

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetEnvironmentVariableW
GetVDMCurrentDirectories
HeapCreate
SetCurrentDirectoryW
GetStringTypeW
FileTimeToLocalFileTime
SystemTimeToFileTime
CompareStringA
SetThreadPriorityBoost
GetShortPathNameW
FindClose
FreeLibrary
EnumResourceNamesW
FindResourceW
SetErrorMode
LocalFileTimeToFileTime
RegisterWaitForSingleObject
FindFirstFileW
FileTimeToSystemTime
LoadResource
FindNextFileW
GetLocalTime
SearchPathW

user32

InvalidateRgn
ExcludeUpdateRgn
ValidateRgn
ValidateRect
ReleaseCapture
GetWindowInfo
SetCapture
GetCapture
GetUpdateRgn

Sections

.text
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imul
Size: 1024B - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ