e1ea67db00677c44bfe6eb8198fc9c57 | Triage

Sharing

General

Target

e1ea67db00677c44bfe6eb8198fc9c57
Size

162KB
MD5

e1ea67db00677c44bfe6eb8198fc9c57
SHA1

516f9da1a718654776127c52a125a1693bc7a33f
SHA256

5a2d4ed2b193edd6716cba71498d109a33016105592520bc8116e740af084e75
SHA512

ccfae64562004b2eed4c6c1975f5830258f2d99d0dd0baacfd6c21ddb00761eb78a3641bf5a07c92c858bb7661f39c75badaa7170c501c05eef0fde80c9f2604
SSDEEP

3072:O9rOic2yJK44aJxsciSfx8KpdpZMAYAy2SgjP71bGDpKL8DA6SFng7L:mrOJM4ASfx82FMAYAy/gjPhbH49Sm7L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/TrackMania_United_keygen_by_DETONATiON.exe

Files

e1ea67db00677c44bfe6eb8198fc9c57
.zip
DETONATiON.nfo
FILE_ID.DIZ
TrackMania_United_keygen_by_DETONATiON.exe
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Selling\Buying\Seeking.tfr

Exports

Exports

InsertExpressionExW@16
CallMutant@4
ShowObjectExA@16
InvalidateFullName@16
RemovePointW@12
SetFileA@16
OnListA@8
InsertComponentA@12
FormatWindowInfoExW@8
SetMutexA@4

Sections

.qhma
Size: 152KB - Virtual size: 151KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.iJwkuN
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lYNrd
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.WrEjh
Size: 512B - Virtual size: 54B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.NFX
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zoZn
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lvuFa
Size: - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ