efb2f5f08884d8bb2d72aa8426eaaf70[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

efb2f5f08884d8bb2d72aa8426eaaf70.exe
Size

49KB
MD5

efb2f5f08884d8bb2d72aa8426eaaf70
SHA1

17598840eec348a8cc4071cda4456f96918d3d23
SHA256

e9ea1fc071813b781cac2e9fe4ca2f851b0e346b45351a9a8a6dd60b94053bab
SHA512

4db365a59f9026310850a1648f8e229c0d46eef3d833a0f1690b11f93ba19f5d0f57d13459973e54cc8227935af5beaad80d54a1c6c630e0c4eb84ac206d62b1
SSDEEP

768:06zVLQrn8VwrM6G4N4d1d1d1d1dLxyP2hn:06VLQj8Vw//md1d1d1d1dLkYn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
efb2f5f08884d8bb2d72aa8426eaaf70.exe

Files

efb2f5f08884d8bb2d72aa8426eaaf70.exe
.exe windows:4 windows x86 arch:x86

67aef4ca374591c81adc51c21fd5e078

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateProcessW
GetStartupInfoA
TerminateProcess
CreateFileA
LoadLibraryA
WaitForSingleObject
LoadLibraryExW
SleepEx
GetStartupInfoA
ReleaseMutex
GetProcAddress
LoadLibraryA
VirtualProtect
IsValidCodePage
WriteProcessMemory
Sleep
GetStartupInfoW
LoadLibraryA
VirtualProtect
WriteProcessMemory
CreateProcessA
GetSystemTimeAsFileTime
WaitForSingleObject
WaitForSingleObject

wlanapi

WlanEnumInterfaces
WlanOpenHandle
WlanOpenHandle
WlanOpenHandle
WlanOpenHandle
WlanEnumInterfaces
WlanOpenHandle
WlanOpenHandle
WlanCloseHandle
WlanEnumInterfaces
WlanSetProfileEapXmlUserData
WlanOpenHandle
WlanSetInterface
WlanEnumInterfaces
WlanOpenHandle
WlanCloseHandle
WlanEnumInterfaces
WlanEnumInterfaces
WlanCloseHandle
WlanEnumInterfaces

Sections

.text
Size: 19KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.BitDef
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.BitDef
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.BitDef
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.BitDef
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.BitDef
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

67aef4ca374591c81adc51c21fd5e078

Headers

File Characteristics

Imports

kernel32

wlanapi

Sections

.text Size: 19KB - Virtual size: 68KB

.BitDef Size: 4KB - Virtual size: 4KB

.BitDef Size: 4KB - Virtual size: 4KB

.BitDef Size: 4KB - Virtual size: 4KB

.BitDef Size: 4KB - Virtual size: 4KB

.BitDef Size: 4KB - Virtual size: 4KB

.data Size: 5KB - Virtual size: 8KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 19KB - Virtual size: 68KB

.BitDef
Size: 4KB - Virtual size: 4KB

.BitDef
Size: 4KB - Virtual size: 4KB

.BitDef
Size: 4KB - Virtual size: 4KB

.BitDef
Size: 4KB - Virtual size: 4KB

.BitDef
Size: 4KB - Virtual size: 4KB

.data
Size: 5KB - Virtual size: 8KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 1KB