4ee5c2951dccbfeb590a273e3ea90ebd189e3594c25dbb932703a8e1049352e9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4ee5c2951dccbfeb590a273e3ea90ebd189e3594c25dbb932703a8e1049352e9
Size

6.7MB
MD5

a1cba358914d22760acfcc69e6109cc2
SHA1

8276022b2683a5f88798b48fa3d7d171ff3e0770
SHA256

4ee5c2951dccbfeb590a273e3ea90ebd189e3594c25dbb932703a8e1049352e9
SHA512

30c9d2a5c7e3fec4922248739dbf45177541d0a6991d32af0ce477a0730c2730b73a3d8e9b1f25f400691d8ececb2ac45758afe75f02aedd71e2d6dce4ba95c2
SSDEEP

196608:kgzxfGjE00D1qTulzVzGcsRIo6m1Yz2y3+0ZiBu2BbiIMQI0G/:TcjPu//9o6M42a+0ZmxLMQu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ee5c2951dccbfeb590a273e3ea90ebd189e3594c25dbb932703a8e1049352e9

Files

4ee5c2951dccbfeb590a273e3ea90ebd189e3594c25dbb932703a8e1049352e9
.exe windows:5 windows x86 arch:x86

9ce3a4b363ae627f2e1c989aafca99a3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Projects\WinRAR\sfx\build\sfxrar32\Release\sfxrar.pdb

Imports

kernel32

GetLastError

oleaut32

SysAllocString

gdiplus

GdipAlloc

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

user32

GetWindow

advapi32

RegDeleteKeyA

shell32

SHGetFolderPathW

Sections

.text
Size: 167KB - Virtual size: 472KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 781KB - Virtual size: 784KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ