MarsStealer_Menu[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

MarsStealer_Menu.exe
Size

3KB
MD5

8abb41f6e7010d70c90f65fd9a740faa
SHA1

dd71a776e790e437eb8da082c663eb824db34651
SHA256

e506ea953b9f457490a0db0cccf16a6b9c1f159da5769853a6eb20e2d3d542d7
SHA512

c62977defea808e10bd7923acbf595e14526f09ffbacc20c9042f11a0762acea25c19e32f4d10d6e0124c59d67b4ff274f9310fbf4669d30ef2a90707557659e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
MarsStealer_Menu.exe

Files

MarsStealer_Menu.exe
.exe windows:1 windows x86 arch:x86

7f70ee190fd264e7922d957808284b0e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
SetFilePointer
WriteFile
CloseHandle
ExitProcess

user32

DialogBoxParamA
GetDlgItem
GetWindowTextA
EndDialog
SendMessageA

shell32

ShellExecuteA

Sections

LLCPPC
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

LLCPPC
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ