194cc2ab1f2119ef03a7afe149f5ee82 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

194cc2ab1f2119ef03a7afe149f5ee82
Size

84KB
MD5

194cc2ab1f2119ef03a7afe149f5ee82
SHA1

c058ac4edc18e7761fc6a45e347d0f8bbf7f35c5
SHA256

94c2b695c0fc71b7461498b59e9eaae702dc282328b3143411a22f9c13dee905
SHA512

81550e29518852ed93030355f77c53a478a1d9674023cfb26e8ba4a64c60fd6c36c7ffc68b02312fca630176187d2c8942cd06ff0d82634951c1830b3920b62f
SSDEEP

1536:HA595KnLmUP/75QWrlOszcz9zx1B2lsEi:Hk5KnCUP/NQZ9zx1BV/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
194cc2ab1f2119ef03a7afe149f5ee82

Files

194cc2ab1f2119ef03a7afe149f5ee82
.exe windows:4 windows x86 arch:x86

61e474b6ff69570ff75600aa147d549a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetMailslotInfo
PrepareTape
ClearCommError
CreateEventA
SetEnvironmentVariableA
GetConsoleAliasesW
AreFileApisANSI
EnumSystemLanguageGroupsA
WaitCommEvent
DeleteCriticalSection
GetComputerNameW
GetConsoleAliasExesA
EnumResourceTypesW
GetConsoleAliasW
EnumCalendarInfoW
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

.text
Size: 4KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ