e88553dda98dc3bc66070442ae39db097c81ee7bb0ae9898d3c4ab6b4542fccc | Triage

Sharing

General

Target

e88553dda98dc3bc66070442ae39db097c81ee7bb0ae9898d3c4ab6b4542fccc
Size

2.4MB
MD5

f29f2e5c03c8e57ceac285cb19d40600
SHA1

a60830fcb1b1e1946a912656d8840fdba9ec9757
SHA256

e88553dda98dc3bc66070442ae39db097c81ee7bb0ae9898d3c4ab6b4542fccc
SHA512

d61aac5a76220a279252af54429de54e0857e3fb27ea0cac621d9f94a162103ff9d77371afe437bafc12bae292dcb5dd60ee2120befd05222d99bed27613e716
SSDEEP

49152:GSJ0MaLywg+H/FWUZ8CbjSNTMkTP70VTszxwGdSlvuhVbBRft7EfOWn3:nV6lroNIUD0RWxwHm1fW3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e88553dda98dc3bc66070442ae39db097c81ee7bb0ae9898d3c4ab6b4542fccc

Files

e88553dda98dc3bc66070442ae39db097c81ee7bb0ae9898d3c4ab6b4542fccc
.exe windows:4 windows x86 arch:x86

507cfd14925b74adbe1ef8a8ca45f01b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

SystemParametersInfoW

advapi32

RegQueryValueExW

Sections

Size: - Virtual size: 2.2MB

IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 93KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE