e217f5cbc8b12134e9eb3d629c4423c4 | Triage

Sharing

General

Target

e217f5cbc8b12134e9eb3d629c4423c4
Size

19KB
MD5

e217f5cbc8b12134e9eb3d629c4423c4
SHA1

e947554bac4ca9fe1180ee1094b312690931ed92
SHA256

2ae03d99afe5d68299dccbc6c2c58ed19565af76ffcbf5ffb8ec81093d1ed5bc
SHA512

4b6ad059d3449ed583f8c4f7082105b64aa61054d2718a364f21774acf3ae8d950eca4df9771918b20fa22e56d2261a0a5fca85be03f954e223a0617caee912c
SSDEEP

192:KhSTxjIKwWw9HxLAJDRRzUISiW9hHCvBYgGS:Qkw9GJDbzUIo99CvBVGS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e217f5cbc8b12134e9eb3d629c4423c4

Files

e217f5cbc8b12134e9eb3d629c4423c4
.exe windows:4 windows x86 arch:x86

84a81c699234e6a918649136e13f009d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CallNamedPipeA
TlsFree
GetUserDefaultLangID
ReleaseMutex
SetEvent
VirtualAlloc
GetExitCodeThread
GetLargestConsoleWindowSize
GetOEMCP
CreateMutexA
GetDefaultCommConfigA
TlsGetValue
GetModuleHandleA
GetThreadTimes
AddAtomA
GetThreadLocale
GetThreadPriority
IsDBCSLeadByte
CompareStringA
GetConsoleCP
PulseEvent

user32

GetWindowTextA
CloseWindow
GetActiveWindow
ShowWindow
GetWindow
GetForegroundWindow
GetFocus
ValidateRect
ReleaseDC
InvalidateRect
GetSystemMetrics
GetClassInfoExA
IsWindowVisible
RegisterClassA
GetClassNameA
ReleaseDC
GetWindowTextLengthA
IsIconic
GetDC

tapi32

MMCInitialize
MMCSetLineInfo
MMCSetPhoneInfo
MMCSetServerConfig
MMCShutdown

mlang

DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ