1e70ef854ebbd12bd8ace81d8fd3822f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1e70ef854ebbd12bd8ace81d8fd3822f
Size

107KB
MD5

1e70ef854ebbd12bd8ace81d8fd3822f
SHA1

a83ff16bc043c35d19da5a4ebe456f0c3b028164
SHA256

e200e2da960b827376808849d051270f3cbb19b9dea8392816b27eabcea54f69
SHA512

db9390767115bc3ffa45f101e6cc8f9c6a42a8d98cf19fabc4f666470ae0819ca08b2ea5003017056a2dfc16bd423f92d656e4cf8435a3edb4a09d95a4d56866
SSDEEP

1536:ye/dmLQk79ELxzF1PDsLioAoiCkEjQfJ5mIDWDqv/6bI:GLRELtXsmRnEjqCIDWDq4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1e70ef854ebbd12bd8ace81d8fd3822f

Files

1e70ef854ebbd12bd8ace81d8fd3822f
.exe windows:5 windows x86 arch:x86

428b45c9077be287b59ea484c5e48e6e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CloseDesktop
IsIconic
GetDlgItemTextA
DrawStateW
CharLowerW
GetKBCodePage
SetPropW
LoadBitmapW
MapVirtualKeyW
SendMessageW
PostQuitMessage
SetDlgItemTextW

msvcrt

iswascii

kernel32

LocalFree
LocalAlloc
MoveFileW
GetSystemDirectoryA
FreeLibrary
GetCommandLineA
GetFileSize
SetTimerQueueTimer
GetCPInfoExA
FormatMessageA
lstrcmpW

gdi32

SetBitmapDimensionEx
ExtTextOutA
GetTextCharsetInfo
CreateRoundRectRgn
SaveDC
OffsetViewportOrgEx
GetTextColor
SetMagicColors

Exports

Exports

?PtdxqQpkisfFiyprbgu@@YGPAED@Z
?SmlLyxyqjPwhxljsczzW@@YGKEM@Z
EomRFqqkpetbfD
_YjglnwBbvwftpUdgeqrfyc
?PlNPeel@@YGXM@Z

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 71KB - Virtual size: 179KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE