15131cb7ea0e4c517e16e1095c704be1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15131cb7ea0e4c517e16e1095c704be1
Size

24KB
MD5

15131cb7ea0e4c517e16e1095c704be1
SHA1

fbc1796730451f6fdee077374b1132927f5d5168
SHA256

5b5838c7fcb6ee216837925c0222acc2abf1ef143d289a28041bcfc2e1951b79
SHA512

56c00ea10359c2833fc5d95d033dc4324c0f0191a2ccfe5a7f728b418de6b4aa4256d5a2349eace394642fc63bd649152f16cead62e42314a147ad4368fe795c
SSDEEP

192:zhEhAAT/HqAlCIF/Sx5CIWfFdurQXdcPN0tXzwmZBdZD9qB3y2JEPGHrcXq1Lyy3:MVl0uM9NUXcml3gC2Pyy4aFrh6oZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15131cb7ea0e4c517e16e1095c704be1

Files

15131cb7ea0e4c517e16e1095c704be1
.exe windows:4 windows x86 arch:x86

a260d3c93298f77bfcdf1f91df751579

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ReleaseDC
GetDC
InvalidateRect
GetWindowRect
GetDesktopWindow

gdi32

BitBlt

kernel32

GetStdHandle
GetFileType
HeapDestroy
GetStringTypeW
GetStringTypeA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetOEMCP
GetACP
LCMapStringW
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
GetCPInfo
LCMapStringA
HeapAlloc
VirtualAlloc
HeapReAlloc
GetProcAddress
LoadLibraryA
MultiByteToWideChar

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE