607f99cde2b294e51ee1d470f7eeb219[.]exe | Triage

Sharing

General

Target

607f99cde2b294e51ee1d470f7eeb219.exe
Size

83KB
MD5

607f99cde2b294e51ee1d470f7eeb219
SHA1

4d8559d4c3177b9d86a3012a73667c614cc341ea
SHA256

530c2593eb8338069f957f79c6525687fd4135ab484f67d303d847be7f628418
SHA512

316bf836ba959a5a767972c996915a970d617ba90fed3db7156bceb39092019e1b97f91217f0b6630291807244c4be927537482aa14cef2926948c5694b6da1c
SSDEEP

768:qu7Ue4/FMCUd75SLiBpkQ1s9uAhKwI8REsdDzRuJIGptjGJ5KH6yj0FCN2aGdTRa:W/CCqOiHL+/fdRndwJIyA/KaS0+QNa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
607f99cde2b294e51ee1d470f7eeb219.exe

Files

607f99cde2b294e51ee1d470f7eeb219.exe
.exe windows:5 windows x86 arch:x86

26bbc4d43f819b2dfec12a1649da7f07

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
FindClose
GetModuleHandleA
EnterCriticalSection
CreateFileA
RemoveDirectoryA
GlobalFree
TlsGetValue
GetCalendarInfoA
Sleep
DeleteFileA
GetConsoleTitleW
LeaveCriticalSection
GetStartupInfoA
GetDriveTypeA
CloseHandle
GetFileSize
lstrlenW
VirtualProtectEx
GetTickCount
GetConsoleMode
GetModuleFileNameA
CreateDirectoryW
WriteConsoleW
InitializeCriticalSection

user32

IsWindowVisible
wsprintfA
GetWindowLongA
DispatchMessageA
MessageBoxA
PeekMessageA
GetWindowLongA
IsWindowEnabled
FillRect
GetWindowDC
IsWindow
GetSysColor
EqualRect

cryptdlg

CertConfigureTrustA
CertTrustCleanup
CertTrustCertPolicy
CertTrustInit

advapi32

RegCloseKey

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE