24973e8808c205b7761b5b468df343b1826c6c339e66e5661103a42632aa0dbb[.]exe | Triage

Sharing

General

Target

24973e8808c205b7761b5b468df343b1826c6c339e66e5661103a42632aa0dbb.exe
Size

4.5MB
MD5

116fe2b909ecbd566b0ace44a9eea180
SHA1

c5266a67ba49645aca4b70a9a84047041629bac8
SHA256

24973e8808c205b7761b5b468df343b1826c6c339e66e5661103a42632aa0dbb
SHA512

0421a7638dca2eec5bbcffd45c9de2fea4235779d506f51d252123e5135e7355b19bf254186e785554c71c82864bcb54f42a3a2aa3a0835560081238c743e894
SSDEEP

98304:EAjGEaI6o/bPLge0Vgu0AqN3u37HmKam/BivHcjvUB:ky6GjLgnNGN3u3qKakBwHcg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24973e8808c205b7761b5b468df343b1826c6c339e66e5661103a42632aa0dbb.exe

Files

24973e8808c205b7761b5b468df343b1826c6c339e66e5661103a42632aa0dbb.exe
.exe windows:5 windows x86 arch:x86

a26b40d6a6291b4709b150f4414a8d3c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

CallWindowProcA

advapi32

CryptGetHashParam

gdi32

CreateFontA

shlwapi

PathFileExistsA

wininet

InternetCloseHandle

msvcrt

_strnicmp

shell32

DragQueryFileA

comctl32

ord17

Sections

.text
Size: - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 486KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

. 1f
Size: - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.wky
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mhj
Size: 4.5MB - Virtual size: 4.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 672B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ