radix_key[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

radix_key.exe
Size

22KB
MD5

9ab956b457bebc111c74fcd69906b4e9
SHA1

356f2ede10949147c0a5820014d12b9e92cb3c15
SHA256

3a39b54920f76a1e98c8a4a8721dfe32e75226e21e6fd97ea4e50e16fdb82c77
SHA512

8c93e94c466af408da29fd41b1baf270ef9f5c26e315d3e013945ef55602836dfecbab5b5e2a12938ef248a8463d33cb021aa607bee16f7e66787c0c8a3b2a1c
SSDEEP

384:Eml+3/nga9Mp8QYI7Fayh55DJ2wVOC3A2s2A9iLUv2e8rK:d+3/n5chsqNjvsT9i40

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
radix_key.exe

Files

radix_key.exe
.exe windows:4 windows x86 arch:x86

af69626d2dade96e9cd6f9f1f207ec32

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CryptGenRandom
CryptCreateHash
CryptDestroyHash
CryptHashData
CryptGetHashParam
CryptReleaseContext
CryptAcquireContextA

user32

SetCursor
GetSystemMetrics
GetWindowRect
DestroyIcon
GetDlgItem
LoadIconA
MessageBoxA
DialogBoxParamA
PostMessageA
SetDlgItemTextA
GetDlgItemTextA
SetClassLongA
LoadCursorA
wsprintfA
EndDialog
SetWindowPos

kernel32

ExitProcess
GetLastError
lstrlenA
GetModuleHandleA

gdi32

CreateFontA
DeleteObject

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 886B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ