d4eef8d023aec4675dade0e1ceb4db09 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d4eef8d023aec4675dade0e1ceb4db09
Size

147KB
MD5

d4eef8d023aec4675dade0e1ceb4db09
SHA1

6e14ad2547f63db13c4432a967bad6df250430f3
SHA256

cb75d95df0023bf6be66248663298c3425e87b32a6d3d1a99ff822966977b9db
SHA512

d952da51e3be89fd795406a29b3ed9e6284da86bbfdd9257313dda635ee2b8081e3e7fb8cc72cb44d36bc87e85ae09cecb5a162a2f2cad63437d41036b03df21
SSDEEP

1536:kwLKSCWhSK9sALKotgmNSNv9VEUgrojqKN+iVDpmUp7iKqc5TYqjHQ:klrcFltg+sTgro+KEitp1p7dTcqk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d4eef8d023aec4675dade0e1ceb4db09

Files

d4eef8d023aec4675dade0e1ceb4db09
.exe windows:5 windows x86 arch:x86

82946d5afd4543ef20d9206e370d537e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileTime
WriteFile
CopyFileA
DeleteFileA
DeleteFileW
FindClose
CompareStringA
HeapFree
GetLastError
lstrcmpA
lstrcatA
GetLocalTime
ExitProcess
GetCommandLineA
FreeResource
lstrlenA
GetFileType
CopyFileExA

advapi32

RegEnumKeyW
RegLoadKeyA

user32

GetWindowTextLengthA
GetMenu
GetDC
CopyImage

Sections

.475gh
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.6h8cd
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.96f23
Size: 112KB - Virtual size: 448KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.9dbd7
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ