Setup_patched[.]exe | Triage

Sharing

General

Target

Setup_patched.exe
Size

19.0MB
MD5

2bab687e67a0269e399592cddcd83f4d
SHA1

dcbac59a195d8d5e1974086fa766e7b52eb1e83d
SHA256

123e50908600497b7c160bf7c4bcb4a322b9b2c5c7427909521f76a670c64a2f
SHA512

68ff6be23031a3d6aabbb084da05effb311806cd5b7c7f3fa9fe0bbadf2fcad0c74e13580a93a315f56fda2cc40e12790c7c19100fe0189564e563d0d9a354f0
SSDEEP

393216:qV+If6G/vdXxo6JtFHPKfK0VdaqA5ZuDFXRX7q9g1Ip1s1VT:qV+ILFX2WFcleg1IHo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Setup_patched.exe

Files

Setup_patched.exe
.exe windows:6 windows x86 arch:x86

300a86c865d01265492f5849ef8bbd55

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileW

user32

CloseClipboard

ole32

CoCreateInstance

gdi32

BitBlt

oleaut32

SysAllocString

Sections

Q@JHE
Size: - Virtual size: 245KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

OO8;>
Size: - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

@P9NO
Size: - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

E:D?7
Size: - Virtual size: 9.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

9KGKJ
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ND7>P
Size: 17.7MB - Virtual size: 17.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

HG5;K
Size: 733KB - Virtual size: 741KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ