1cb9c0ed2095c9d4a562a11cfbfc4006 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1cb9c0ed2095c9d4a562a11cfbfc4006
Size

480KB
MD5

1cb9c0ed2095c9d4a562a11cfbfc4006
SHA1

677dcfdfdf0c2b9061af54fd10d84ea45c37bcb5
SHA256

73ed13a17615b8690720f0631f8f2a813eb19f330012153fbeaaf86abe8220af
SHA512

fd34f6a730cd8bf3cc1a1abca4a859b2d1e8b56728d72e50daaeb92411f1fafeef62831f111d1bdc6f8dd999f9b472a0d570b13e2fdffcdf53fb09d0df036710
SSDEEP

12288:4WQ1JlXIcH5sFi90O0U3z8vKnR5gwidR0xEpAgLtWcYV/5Raw:4WkJJdZgi9H8veSwiL0CpvLtQ5Raw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1cb9c0ed2095c9d4a562a11cfbfc4006

Files

1cb9c0ed2095c9d4a562a11cfbfc4006
.exe windows:4 windows x86 arch:x86

d2f554ea6fb23465d7f511a27e5e5e89

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadCursorFromFileA
GetShellWindow
GetMessageTime

kernel32

GetThreadPriorityBoost

Sections

.text
Size: 477KB - Virtual size: 480KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 328B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE