eef10866ceedb9811123abf82db5941f7284367ced6460d04900f9dd5ceb22af[.]exe | Triage

Sharing

General

Target

eef10866ceedb9811123abf82db5941f7284367ced6460d04900f9dd5ceb22af.exe
Size

165KB
MD5

7285ebc9e86eda0cfa0d013fe2a0053d
SHA1

f484a8cf7d833ea31c8a3a6718d477be35eda989
SHA256

eef10866ceedb9811123abf82db5941f7284367ced6460d04900f9dd5ceb22af
SHA512

84af41f32ed12ad46cbbfbb2334ba208621adbd9fe3fa1f4901c168f13fcdac5b2c34f3165f9ac9365e40c28183241b12f9760d094931e1684d5d7b1620c27b5
SSDEEP

3072:EfkfcHxa/ZrtSBnZ+k2/d7V2g855t1dRTvydaDgA+XtZ4XV:akfcHxaRhS7+kId/85zLRxgAiZ4F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eef10866ceedb9811123abf82db5941f7284367ced6460d04900f9dd5ceb22af.exe

Files

eef10866ceedb9811123abf82db5941f7284367ced6460d04900f9dd5ceb22af.exe
.exe windows:4 windows x86 arch:x86

0be046a940adcc60bd03e300c823bc15

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rpcrt4

UuidCreate

user32

SendMessageA
GetDlgItem
IsWindow
CreateWindowExW
DestroyWindow
EnumChildWindows
GetWindowThreadProcessId

kernel32

GetCalendarInfoW
SetFilePointer
ReadFile
InitializeCriticalSection
IsValidCodePage
GetStartupInfoA
RtlUnwind
ExitProcess
LeaveCriticalSection
HeapDestroy
SetEndOfFile
EnumResourceNamesA
VirtualFree
GetOEMCP
HeapReAlloc
GetCPInfo
FreeEnvironmentStringsA
HeapCreate
EnterCriticalSection
GetACP
HeapSize
RaiseException
VirtualAlloc
DeleteCriticalSection
SetEnvironmentVariableA

ole32

CoGetMalloc
CoTaskMemFree
CoInitializeSecurity
CoUninitialize
CoInitializeEx
CoCreateInstance
CoQueryProxyBlanket
CoSetProxyBlanket
StringFromGUID2

Sections

.text
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ