1a14693dbbd3407a0c9d915f64b54fd8 | Triage

Sharing

General

Target

1a14693dbbd3407a0c9d915f64b54fd8
Size

133KB
MD5

1a14693dbbd3407a0c9d915f64b54fd8
SHA1

b78226cb94328502c2025dd5dd06d9aa9358e322
SHA256

20a556b98bf2664f3949453ef65be2cebbfe47a42cd316eb2d33de90964120e1
SHA512

7ba194ad1c37dd1e6e88b46520e1db93954b8a25617974d80954292c162cd6b752969f80948cee66d10fdd4ee674a366416c09b1d8cef1fdf0332daaea5d685e
SSDEEP

1536:1md7t1GW+E14dhYyLs1Cr9ZisYGTpCEzTw8AJVmPNdGGjmRnpTEOM/oYBB:IROWf14dhy1oicYwkhWNfGi/NB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1a14693dbbd3407a0c9d915f64b54fd8

Files

1a14693dbbd3407a0c9d915f64b54fd8
.exe windows:1 windows x86 arch:x86

aec24dc29bf1f2ba28edcfbd867ddcb9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringW
GetModuleHandleA
SetFilePointer
SetUnhandledExceptionFilter
HeapSize
GetModuleFileNameA
FindClose
GetStartupInfoA

gdi32

GetDeviceCaps
EndDoc
SetBkMode
CreatePen

user32

CallWindowProcA
GetFocus
DestroyWindow

ole32

CoSetProxyBlanket
CoCreateInstance
CoUninitialize

msvcrt

exit
_controlfp
__setusermatherr
_XcptFilter
__set_app_type
_initterm
__p__fmode
__p__commode
_acmdln
_adjust_fdiv
memcpy
__getmainargs
_getdcwd
_except_handler3
_exit

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 103B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ