b66eaf8b916e3144fb99e1997b41d278 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b66eaf8b916e3144fb99e1997b41d278
Size

112KB
MD5

b66eaf8b916e3144fb99e1997b41d278
SHA1

c0d1a51d64e9387a51f5541e121d7927f92d0201
SHA256

12edeb5b49de446186457af4ed87c4bdc72c9951f18ecdd6b87ca989f56003cb
SHA512

c22ff6f11aec29cf4192035cba20baec3bca80f4aa4d3d06c75d2d18300aa1e7320bca0b6272a92eeecb8a42060483fa9679780eed07156e5b0acbb69613ed03
SSDEEP

768:Gy7Hz0ixirBPJC+S/VX2FWynA3+e9/Gbt0Hczw0FH7OtrMHp2ZsEeH4IvyJ2:QrhJC+Q+WPt9/GaOHyrMHMZs/HtvyJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b66eaf8b916e3144fb99e1997b41d278

Files

b66eaf8b916e3144fb99e1997b41d278
.exe windows:5 windows x86 arch:x86

db114927c7723d8631629f0f1e1381df

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumValueW
RegCreateKeyA
RegDeleteKeyA
RegLoadKeyA
RegQueryValueW
RegGetKeySecurity
RegCreateKeyA
RegOpenKeyExW
RegCreateKeyExW

kernel32

HeapFree
FindClose
ExitProcess

user32

AppendMenuA
AppendMenuW
GetDlgItem
LoadMenuA
GetWindowTextLengthA
AlignRects
DrawIconEx
EndDialog
GetDC
CreateIcon

Sections

.gjod
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.plip
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kdel
Size: 69KB - Virtual size: 432KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mbahk
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ