21b00eaf136fcd9af63f71ce8ea0e001 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

21b00eaf136fcd9af63f71ce8ea0e001
Size

157KB
MD5

21b00eaf136fcd9af63f71ce8ea0e001
SHA1

05edb7b80d5dff7ae0082335a1d3eb5da7e5d0ee
SHA256

71f421954993afc34eaa7ee28c9d9a3f59dec3dd0332d169fe1db22c0200d76a
SHA512

711831b606066f358fe14a954c3959090c9ff13660d441c2cf44343ef8aa82b4594ca9773c9dc3339d7752072e9cf599d12bba55d1b44ef1416c05d2e407b1ed
SSDEEP

3072:TvH+XXiDMHdE2HHp9ycYyCoGfTJq/Z6F2tLuw/EAYi:IbjHv9moGfdq/cF26A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
21b00eaf136fcd9af63f71ce8ea0e001

Files

21b00eaf136fcd9af63f71ce8ea0e001
.exe windows:5 windows x86 arch:x86

24a213e900aaff4c063d5389a90783bf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyW
RegCreateKeyExW
RegQueryInfoKeyA
RegEnumKeyExA
RegCreateKeyA
RegDeleteKeyW
RegEnumValueW
RegEnumKeyA

kernel32

ExitProcess

user32

DrawIconEx
CopyImage
GetDC
BeginPaint
DialogBoxParamA
GetDlgItem
EndDialog
AlignRects
AppendMenuW
GetWindowTextA

Sections

.lkam
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.nkja
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kknca
Size: 120KB - Virtual size: 491KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ogedl
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ