0dded89e656f9a2727d079c85ede2264 | Triage

Sharing

General

Target

0dded89e656f9a2727d079c85ede2264
Size

548KB
MD5

0dded89e656f9a2727d079c85ede2264
SHA1

890eb3e1cfbae626788f64374725edfa4d863d88
SHA256

6984b5b5cef05755654b9d00790eeae584e433fdd6d48a55d4e352a1298ef854
SHA512

b71757e0bef6ef85d93bd9e9e292921fd439194cf86a070bbe9650d213b0df4e68cf9e822ed8c745d2109338ef6b186b28877b786a42bf42363989fe855dd8c8
SSDEEP

12288:xEX0Xu5CVQvxUnC63CWwaITqSFFFFXch0r52s0ds0/rCZFqoW2wcWilQ:modVQv6yWRufFFFFXcu4dlrCWoXJNQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0dded89e656f9a2727d079c85ede2264

Files

0dded89e656f9a2727d079c85ede2264
.exe windows:4 windows x86 arch:x86

9890841720bc68c8400c2ed62e555f77

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDefaultLCID
GetStartupInfoA
RtlUnwind
GetLogicalDriveStringsW
LCMapStringA
FoldStringW
GetStringTypeA
ExitThread
ExitProcess
CreateThread
HeapCreate
GetStdHandle
GetOEMCP

msvcrt

__wgetmainargs
_initterm
memset
__p__fmode
acos
__p__commode
__setusermatherr
_amsg_exit
__dllonexit
_onexit
_wcmdln
memcpy

msimg32

TransparentBlt

Sections

.text
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 740B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ