New_Project_1[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

New_Project_1.exe
Size

999KB
MD5

d1c03f77fe3ed4917234b28e60c480b7
SHA1

aa4219e05d362cb5743da9b3e102d7654f622ae2
SHA256

636f18b2add85496c6db85e110be824a0d6372d2f02e8756c9f9c6971ba6f11c
SHA512

7d664c5df8e93dfc7a7516b7d6b01edb90173580870755d07fb6d05a10143a254b3ac3f24e43337bc9fa7e170626eea6101c75cf8cc2ee6a4fccc364b458c98b
SSDEEP

24576:lBh00dDODqmiTgm0V7Xw4B6PXtsrwYiaTZ4nP:lg0DOumiTB06JfWsYiaV2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
New_Project_1.exe

Files

New_Project_1.exe
.exe windows:1 windows x86 arch:x86

Password: tyuuoltuo

140094f13383e9ae168c4b35b6af3356

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
ExitProcess
GetComputerNameA
GetModuleFileNameA
GetModuleHandleW
GetProcAddress
SetErrorMode
Sleep
VirtualAllocExNuma

shlwapi

PathFindFileNameA

msvcrt

malloc
free
memset
strcmp
_strcmpi
strcpy

Sections

.text
Size: 997KB - Virtual size: 996KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ