eb7d2b22086680dc030b9e6247dd6919[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eb7d2b22086680dc030b9e6247dd6919.exe
Size

101KB
MD5

eb7d2b22086680dc030b9e6247dd6919
SHA1

f508b30081631d3f4c4b49a6ab9070996027e44b
SHA256

7655a8cce290a436e7b672e922ffb00f34f93adaed3121c235dbb5a55a3510d6
SHA512

08b49a1a93f3a1239b0d220411fc12ab9d92d356da8d77ff0a2d79f03ace2ce142fa2021712d9a59c80c5993bc2834fa9bb8fba69f749ee912035f98e3dcf915
SSDEEP

3072:78LA+BxPIJrICbNQFk8jwaaHw7Koj4ri5D:79eyFICbN+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eb7d2b22086680dc030b9e6247dd6919.exe

Files

eb7d2b22086680dc030b9e6247dd6919.exe
.exe windows:65535 windows x86 arch:x86

e0da3cc3c1bbf6faea5c1269b1e821d9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
CreateFileA
VirtualProtect
GlobalAlloc
VirtualAlloc
SetConsoleOutputCP

advapi32

RegCreateKeyExA
RegFlushKey
RegQueryValueExA
RegOpenKeyExA
RegConnectRegistryA
RegQueryInfoKeyA
RegSetValueExA
RegEnumKeyExA

Sections

.text
Size: 60KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE