18ee71352b6f2143f7a829da1c36114dd28888afd2b801768081e78f6727d61d

General

Target

18ee71352b6f2143f7a829da1c36114dd28888afd2b801768081e78f6727d61d
Size

840KB
MD5

83368999ed26cd05168518dfe74d8c60
SHA1

1984c8d1fb65352088329c0b57f5274e50524f76
SHA256

18ee71352b6f2143f7a829da1c36114dd28888afd2b801768081e78f6727d61d
SHA512

d4125e13e711e3ab580569edeb137f86105c8d91b9edfdddd5e31e9252a45b2338eb1b9c0bc11d3f31b5c945e4b5c2273d5af9fe59ab58f6d8ccea8a503938fe
SSDEEP

24576:U/qgC9U5FtvgIoBoovQ7JVyZpgEfCl/N0DeWQ7N:ubQIo/vQdOGSmN

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/96e8d424262797ec751a704afb963911f2744a7b890edf1493184ceeec0dbf1b.exe

18ee71352b6f2143f7a829da1c36114dd28888afd2b801768081e78f6727d61d
.zip

Password: infected
96e8d424262797ec751a704afb963911f2744a7b890edf1493184ceeec0dbf1b.exe
.exe windows:6 windows x86 arch:x86

2388fee6ad8ce4f4a35dbaf64e2da01a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

EnumDisplayDevicesA

advapi32

CredEnumerateA

comctl32

PropertySheet

Sections

Size: - Virtual size: 1.3MB

IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 94KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE