cod2[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cod2.exe
Size

2.0MB
MD5

4263a1356cbedd7f09a8fd89add7a723
SHA1

d4605cc248c07861a3a8e2549e414d4c6d2bb52d
SHA256

33634975abf3e72c520d4ecc5305fb702b9330005129c6d756a2da39155f50a8
SHA512

9ad95d5986b3019e03555373c1b6757a0c44046d381d45e13b61f92326998a1d96619b073d4139a7e77bbfe943fcf0277f4d656342c8fc2a0c0bfbef7859d5c8
SSDEEP

49152:FwvJbRRwt1iAmsOgzo2wLlIEUv0ENvvkg/BmOqS:FyJvTAmsOgzZwLlNrEBFBmOb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cod2.exe

Files

cod2.exe
.exe windows x86

00cc9f31f962e7fc1e76ac92bc742ff6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
GetDC

kernel32

GetModuleFileNameA
GetEnvironmentVariableA
ExitProcess
FormatMessageA
GetLastError
SetLastError
GetProcAddress
VirtualProtect
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
GetModuleFileNameW
GetVersionExA
VirtualFree
VirtualAlloc
GlobalAlloc
SetFilePointer
ReadFile
CreateFileA
LoadLibraryA

advapi32

FreeSid

comctl32

ImageList_Add

comdlg32

PrintDlgA

gdi32

SaveDC

ole32

OleRun

oleaut32

VarNot

shell32

DragFinish

urlmon

HlinkNavigateString

version

VerQueryValueA

wininet

InternetOpenA

winmm

joyGetPos

winspool.drv

OpenPrinterA

wsock32

recv

Sections

.text
Size: 39KB - Virtual size: 3.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE