eec374aaa80df0b473d37725cafe2996456d236db47b1d9f45846c25804821fa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eec374aaa80df0b473d37725cafe2996456d236db47b1d9f45846c25804821fa
Size

845KB
MD5

4578ffdb91e0237faf3b2bd1cac07581
SHA1

d646e58d037bb59ec5d25ba7569c6aa871503aa8
SHA256

eec374aaa80df0b473d37725cafe2996456d236db47b1d9f45846c25804821fa
SHA512

f2ee19c4da6ef7eacdb313db1165b1a4d0e15e434e8ff16568876ef402614a26401fcb6003f06ad8ed992d6f13ebc5436f85929da658167f0fadcaa256b58355
SSDEEP

24576:MOuIG4Kq6TaUcXOLfHXWYQPMrPSlu2qDRz91sxx8xnCW:Q1qQaUcqHXWMSlmF913T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eec374aaa80df0b473d37725cafe2996456d236db47b1d9f45846c25804821fa

Files

eec374aaa80df0b473d37725cafe2996456d236db47b1d9f45846c25804821fa
.exe windows:6 windows x86 arch:x86

416b7f2a84f0fed6b63512fec37d059d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

EnumDisplayDevicesA

advapi32

LsaQueryInformationPolicy

comctl32

InitCommonControls

Sections

Size: - Virtual size: 1.6MB

IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 101KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE