0ec30f1351d8270773947ba571fbfc04 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0ec30f1351d8270773947ba571fbfc04
Size

12KB
MD5

0ec30f1351d8270773947ba571fbfc04
SHA1

04f65bb9bb173b3cce7e0adf96ebe5143bcb5f35
SHA256

a52c7420317fe887acf6a2a004bb95383f5be6ea7ff0f0e4ebfb2445261ee2e9
SHA512

578a6cff9a1fa4f3a87393c426e9f48d0cda1b6a44a59dd0a885327b1f02b8c6ea09494639f6305687d7aa3263d5b00e95ced00b7f63c58527bf453657dd0866
SSDEEP

48:6el3xGcPCVA8Lc7WAjFxPfgtY4BWCmMGmQV0ZY8jNYn1LKOLB:d8nVAr7FNfobAiY8Ri1LtL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ec30f1351d8270773947ba571fbfc04

Files

0ec30f1351d8270773947ba571fbfc04
.exe windows:4 windows x86 arch:x86

05e799da4fd8f6d7fc6fcae92a7399a6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDCEx

kernel32

CreateThread
ExitProcess
Sleep
WaitForSingleObject

gdi32

EnumFontsA

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 320B - Virtual size: 272B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ