1efd9063f75fe67db0bfd6fa1e251b28 | Triage

Sharing

General

Target

1efd9063f75fe67db0bfd6fa1e251b28
Size

163KB
MD5

1efd9063f75fe67db0bfd6fa1e251b28
SHA1

c82bf88e68b8c978cdb55eed44ffa2c5dbbe3062
SHA256

79f630141a8111adaaeb84d835ad4a2dd2892bbdb245760081afa5b9ddfd18aa
SHA512

799965af7d69afced14ed3e0cf5cbd19cd3c502315cf19d75e317837ca783926049831893685d43dcbfd4fa1dabc7154f19b5fd6f4b4189becec508688e0f1df
SSDEEP

1536:sWBWtF33g2iGCcwJWwWvOluRB95l+kekhwrcF0O0nH10gqhs+cvq7:LBWbqGCDOv+keBrVOwXcs3vq7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1efd9063f75fe67db0bfd6fa1e251b28

Files

1efd9063f75fe67db0bfd6fa1e251b28
.exe windows:5 windows x86 arch:x86

5e86d29a4f26f9520ce1152dcb0d4223

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

AlignRects
DialogBoxParamA
InsertMenuA
CopyRect
GetDC
IsMenu

kernel32

ReadFile
lstrlenA
ExitProcess
lstrcmpA
GetFileType
FormatMessageA
GetStdHandle
WriteFile
GetLastError
FreeResource
GetLocalTime
HeapFree
DeleteFileW
DeleteFileA
GetCommandLineA
OpenFileMappingA
HeapAlloc
GetCPInfo
CopyFileExA
OpenFile
GetFileTime

advapi32

RegQueryInfoKeyA
RegCreateKeyExW
RegEnumKeyW
RegFlushKey
RegQueryInfoKeyW
RegEnumKeyExW

Sections

.b1c9
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.61cg
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.9880a
Size: 121KB - Virtual size: 464KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dge7
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ