19141e34f1828c5442b019fb29d5be1f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

19141e34f1828c5442b019fb29d5be1f
Size

21KB
MD5

19141e34f1828c5442b019fb29d5be1f
SHA1

4e03b1c8af4333e201bf057b0ea35e76e8b6c561
SHA256

d18cd730a44d1e7256b7e7bab09764b080886c2a2096e42434abb4769c774a08
SHA512

f4512cfcd85dd7de7fef07053aa41e8dde17750668821db71aefec5bd1d6dc5531d112266a95caac5ac2a7ed5fdf1d5a7e65a0ca8ee3e979918bcad933dcd43d
SSDEEP

384:HwRymsAIUDgz+gtT/MH+f3zPUnVXRGu0oVUxSo:QRJIZtTUebPoRGu0LxS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
19141e34f1828c5442b019fb29d5be1f

Files

19141e34f1828c5442b019fb29d5be1f
.exe windows:4 windows x86 arch:x86

e567ec093f2cd8e218885e80a1d6d52a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAlloc
SizeofResource
lstrcatA
GetEnvironmentVariableA
GetProcAddress
LoadLibraryA
LockResource
GetModuleFileNameA
GetModuleHandleA
WinExec
CloseHandle
DeleteFileA
CreateFileA
FindResourceA
lstrlenA
FreeLibrary
LoadResource
WriteFile

msvcrt

strlen

Sections

.text
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ