9b7529a89c1292454a2d813b6e404c2c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9b7529a89c1292454a2d813b6e404c2c
Size

194KB
MD5

9b7529a89c1292454a2d813b6e404c2c
SHA1

3ce1acf994f84c2e053c795f358811b056bfd340
SHA256

194af2bac827376fff836c74e89be71aae102ea984f4d110b332ee4c7cf14b8a
SHA512

eb90f152fe7adff20d09a836095a8f59248d34f4696c452c82ff00fa3efad5f65b99e2c68fb0ea00f53b5ed82bafb25049efaae364c5a958accc5aa60321ba2c
SSDEEP

3072:pg3u6G5gKCHgU4AFipBJ/OPhQYYdawCdB1+Ay6f0yRfYa+5dTr1s:pwuT5gKWD4AFiF/O5Qzam6rr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/gte.exe

Files

9b7529a89c1292454a2d813b6e404c2c
.rar
gte.exe
.exe windows:4 windows x86 arch:x86

b2539fc8e06290294bea274a7c039a17

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
HeapAlloc
GetModuleHandleA
GetCommandLineA
GetStartupInfoA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
GetProcAddress
LoadLibraryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

gdi32

SelectObject
CheckColorsInGamut
GetObjectA
DeleteObject

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 185KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE