e161eb544c9e464bba827ebe065ab40b | Triage

Sharing

General

Target

e161eb544c9e464bba827ebe065ab40b
Size

123KB
MD5

e161eb544c9e464bba827ebe065ab40b
SHA1

873b9d06276a90358f0306c19753ec32b8c1771b
SHA256

9cb77f0efcd5c36b24e95b3c70a2a0603369b57e39ce9f294d918bc99b9ea05a
SHA512

614fbeadc09c441f3f2deb31d4d9f0b07bd3c771c1f3df119ddcc3979f3045c61c5bc74f4e23dfd153009625592e42e035c1ce6ecd62e08ee9dba72641f55790
SSDEEP

3072:bDmU7/ysVrZ2Md5R6Hp5ZYGTypyHFjmKTbDrEGRHY0:HmkaEdnyp5WGT+ImKPXR40

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e161eb544c9e464bba827ebe065ab40b

Files

e161eb544c9e464bba827ebe065ab40b
.exe windows:4 windows x86 arch:x86

6099e6690b1150565b271bdfe827f3d9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

FlatSB_EnableScrollBar
ImageList_Create
ImageList_Merge
MakeDragList
ShowHideMenuCtl
ImageList_GetIcon

gdi32

CreateDIBSection
DeleteMetaFile
EnumFontsW
EnumICMProfilesW

Sections

.text
Size: 69KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE