eaf754f52c3e7a9a794c4ed6b7a8489f[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

eaf754f52c3e7a9a794c4ed6b7a8489f.exe
Size

79KB
MD5

eaf754f52c3e7a9a794c4ed6b7a8489f
SHA1

1f74aa7a5ae772e5f2b47c9fe5742588fe7952b3
SHA256

3facbd3516b3a52657e0a5f0ea0d54239a916998833e088d68ecd69d61e5b119
SHA512

6772ff948b7da99225fa2b90c00d5cf44185fe8dd0d7240193126e3155719228a5eb641338c7a16349859d8907fb363152a8f36f11c59172f09983f90de4fd62
SSDEEP

1536:Xqfr/z1ih6/nDTJJNds1vV5zgfuVGXzQaQJ1LStIC5AWZvhc4y:XqTL1s6/DTJJPs9V5zPVGXzvmoIC5Xh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eaf754f52c3e7a9a794c4ed6b7a8489f.exe

Files

eaf754f52c3e7a9a794c4ed6b7a8489f.exe
.exe windows:5 windows x86 arch:x86

d00ad340d4d2af0d4f8dbc542f76ae4d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathRemoveArgsW

kernel32

lstrlenA

Exports

Exports

GetCasual
?ZeroPointW@@YG_JU_tagSTACKFRAME64@@P6GPAXPAX_K@Z@Z

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ts060
Size: 512B - Virtual size: 179B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.conas
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.const
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ts050
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ts040
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ts030
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ts020
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ts010
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d00ad340d4d2af0d4f8dbc542f76ae4d

Headers

File Characteristics

Imports

shlwapi

kernel32

Exports

Exports

Sections

.text Size: 26KB - Virtual size: 25KB

.itext Size: 512B - Virtual size: 16B

.ts060 Size: 512B - Virtual size: 179B

.conas Size: 512B - Virtual size: 64B

.const Size: 512B - Virtual size: 64B

.data Size: 2KB - Virtual size: 2KB

.ts050 Size: 6KB - Virtual size: 6KB

.ts040 Size: 9KB - Virtual size: 8KB

.ts030 Size: 9KB - Virtual size: 8KB

.ts020 Size: 9KB - Virtual size: 8KB

.ts010 Size: 11KB - Virtual size: 10KB

.rsrc Size: 1KB - Virtual size: 79KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 26KB - Virtual size: 25KB

.itext
Size: 512B - Virtual size: 16B

.ts060
Size: 512B - Virtual size: 179B

.conas
Size: 512B - Virtual size: 64B

.const
Size: 512B - Virtual size: 64B

.data
Size: 2KB - Virtual size: 2KB

.ts050
Size: 6KB - Virtual size: 6KB

.ts040
Size: 9KB - Virtual size: 8KB

.ts030
Size: 9KB - Virtual size: 8KB

.ts020
Size: 9KB - Virtual size: 8KB

.ts010
Size: 11KB - Virtual size: 10KB

.rsrc
Size: 1KB - Virtual size: 79KB

.reloc
Size: 2KB - Virtual size: 1KB