1ce10e46a87a08a06cebd58eb628b6f7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1ce10e46a87a08a06cebd58eb628b6f7
Size

18KB
MD5

1ce10e46a87a08a06cebd58eb628b6f7
SHA1

312edf0ce390bd2d0e0e54dcc177a5f8a99be22b
SHA256

bac550318505d16245c5d1c6b4ad527153e42d52beb8714ef711e1796420930e
SHA512

90b6ccd68e4d054bc8ab4c4b3ba01de4fa882447bb16ac2f13de5f0429f44f25579b9f5a6832c4c8bedf2ea767824c0a2e538504daa5d79d5e89f26fe5a59314
SSDEEP

192:hw1BZTYVIzDmK1BzV1vjBQKggPQEsisjSylVTj4NKOI:QfOKr/rBQ11EsRd1j4A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1ce10e46a87a08a06cebd58eb628b6f7

Files

1ce10e46a87a08a06cebd58eb628b6f7
.exe windows:4 windows x86 arch:x86

3c557e8e100e46d39977a0a3a4a418cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessVersion
GetEnvironmentStringsA
HeapCreate
InterlockedExchange
LoadLibraryExA
GetTimeFormatA
GlobalMemoryStatus
GetLogicalDrives
VirtualProtect
GetCurrentThread
GetACP
CreateIoCompletionPort
IsDebuggerPresent
GetTapeStatus
GetProcessHeap
GetModuleHandleA
GetStdHandle
HeapDestroy
GetCurrentProcessId
WaitForSingleObject
HeapQueryInformation

user32

DrawTextA
BeginPaint
GetDlgItem
SetForegroundWindow
GetParent
GetWindow
GetWindowTextLengthA
GetClassNameA
GetCursorPos
FrameRect
GetTitleBarInfo
EndPaint
ReleaseDC
DragDetect
FillRect
wsprintfA
ShowWindow
GetFocus
SetActiveWindow

gdi32

CreatePalette
CreateBitmap
GetLayout
CloseFigure
GetClipBox

setupapi

SetupCloseLog

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ