1eddc1e01bf3951b12c5d11fdf9eb919 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1eddc1e01bf3951b12c5d11fdf9eb919
Size

182KB
MD5

1eddc1e01bf3951b12c5d11fdf9eb919
SHA1

7636ebad3981f6c5f2b58ad72d84ab31d9af7c7c
SHA256

2c66dcd215d7c5b77f97bf78f916116712f290a86cddffbbcad6158550ba455c
SHA512

d2daa8964db03be4b382ade212a8a9721fe410b81d16d7463aca4b73037c93235dba11d741f22eee73000d090823ab1c34d0f3b16eba32f41200410a56a1a5b0
SSDEEP

3072:RdxXILxKEXpP8NU2jBmWrHY8izWIMz/K15eT5U5ifAJbFTsOCa2poSSxNgbtu0:GLx9P8N9cWTt7Dz/K10T5JABBepoSUNa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1eddc1e01bf3951b12c5d11fdf9eb919

Files

1eddc1e01bf3951b12c5d11fdf9eb919
.exe windows:4 windows x86 arch:x86

3e517966bbc876745f44cd237e7a8f5f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InvalidateConsoleDIBits
LCMapStringW
GetConsoleDisplayMode
GetDefaultCommConfigA
GetCommandLineA
ExitProcess
GetStartupInfoA

user32

PtInRect
WINNLSEnableIME
DlgDirListComboBoxA
SetWindowContextHelpId
DdeGetLastError
RealGetWindowClassW
EnumClipboardFormats
SystemParametersInfoW
RegisterWindowMessageW
GetCapture
GetShellWindow

gdi32

SetLayoutWidth
EndDoc
GetTextExtentExPointA
CombineTransform
GdiEntry16
STROBJ_bEnum
SetViewportOrgEx
CombineRgn
BRUSHOBJ_pvGetRbrush
GdiPlayDCScript
GetTextExtentPoint32W
DescribePixelFormat
cGetTTFFromFOT
GdiPlayDCScript

Sections

CODE
Size: 5KB - Virtual size: 808KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 172KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 408B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE