26e7d15bf25bf2f1458de8a1c90a0037 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

26e7d15bf25bf2f1458de8a1c90a0037
Size

82KB
MD5

26e7d15bf25bf2f1458de8a1c90a0037
SHA1

b0503836715c1870906976bbcd2b9d2acb341110
SHA256

6776bcd93b17f57a1661d2959bedb8582293bb32b766b9ca3952807c27f4ac32
SHA512

219719c819ba325864fdb78cc8ededac06b1c32d6cca4628729bc7377fa253656f48e4163365ce8db0a56155ae2f5f4887008954a6f18bc7e1acfe504ff1befb
SSDEEP

192:ppTBSe16zmD0oZ1uFhLCZ/b6gbGxufmpTH:pfSOLAoH2gZIufQH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26e7d15bf25bf2f1458de8a1c90a0037

Files

26e7d15bf25bf2f1458de8a1c90a0037
.exe windows:4 windows x86 arch:x86

6dc34082f2c0b91e4f1d20026702a2ef

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDirectoryA
GetSystemDefaultLangID
GetTickCount
ExitProcess
lstrcatA
lstrcpyA
GetProcAddress
DeleteFileA
ReadFile
CreateFileA
WriteFile
SetFileTime
CloseHandle
LoadLibraryA
FreeLibrary
lstrcmpA
lstrlenA

advapi32

RegCloseKey
RegCreateKeyA
RegSetValueExA
RegQueryValueExA
RegOpenKeyA
RegQueryValueA
RegSetValueA

user32

GetKeyboardLayoutList
PeekMessageA
DispatchMessageA
wsprintfA

Sections

Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE