vdub[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

vdub.exe
Size

8KB
MD5

7c094fd6bf7ecc6fc1b2055007944cd7
SHA1

624e3da9af0f3b847e8d972c921fb00a3fdb77b2
SHA256

14d36c33bc6adc3178b4e16ccaee80cb6d70b3e48489657f08e6a5d7a99ca1c1
SHA512

3e50c7bba71263d7d2432f19f04c9f1b066e22b99908496ea79d8d43cc07957a712d522387699322f6a055466acee1752250ae48e6c7a40bbe0eb3d0d25862c4
SSDEEP

96:gPItT5ebsk2854X/MXy4rdq6+cuvg+Jagxet1+PNuaCwNKkLft:bTEb3Fip8Y6sg4dxetq9jt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
vdub.exe

Files

vdub.exe
.exe windows:4 windows x86

0263710b781241cf4d7b55ee6741ae14

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFullPathNameA
CreateFileA
lstrlenA
SetErrorMode
WaitForSingleObject
SleepEx
WaitForSingleObjectEx
FormatMessageA
WriteFile
GetCommandLineA
InitializeCriticalSection
LeaveCriticalSection
GetExitCodeProcess
CreateProcessA
ReadFile
GetStdHandle
GetLastError
EnterCriticalSection
GetConsoleScreenBufferInfo
SetConsoleCtrlHandler
CreatePipe
GetModuleFileNameA
DeleteCriticalSection
CloseHandle
LocalFree
CreateThread
lstrcpyA

user32

PostThreadMessageA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 29B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ