9c708d2bc3bee4482ea16ce51b8cc333cca6827f098387e4eb284da9f281b4ea | Triage

Sharing

General

Target

9c708d2bc3bee4482ea16ce51b8cc333cca6827f098387e4eb284da9f281b4ea
Size

44KB
MD5

5bccfe55a16da896855ac3aa5f4e845e
SHA1

7e18913e0a5b3bddf168ffad58165727f56bc008
SHA256

9c708d2bc3bee4482ea16ce51b8cc333cca6827f098387e4eb284da9f281b4ea
SHA512

1e6aecedb73cae02f04f22375d1c9fd62b14953a28a043a6d72baf1a2c3ab1087bba90c2b561e19dc8ff00beeb7fa90880778dfb8cad9ce90df230d0f29faf3f
SSDEEP

384:feofhVvENahBOCv13TGZ9UXv/kWJxGZ9UXvC5zaGZ9UXvSOo7QzFbZbs3vC:fHVENMMU3qZ9gvPcZ9gvUZ9gvw/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9c708d2bc3bee4482ea16ce51b8cc333cca6827f098387e4eb284da9f281b4ea

Files

9c708d2bc3bee4482ea16ce51b8cc333cca6827f098387e4eb284da9f281b4ea
.exe windows x86

b77e7030878776e3b7226088f0c9ab13

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetProcAddress
GetModuleHandleA
GetLastError
GetStartupInfoA

user32

wsprintfA
MessageBoxA

msvcrt

__getmainargs
strcpy
memset
_mbsstr
memcpy
realloc
malloc
strlen
_exit
exit
_acmdln
_XcptFilter
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 742B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ