0acc1dbede45bb0011a06dd04b79dfe2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0acc1dbede45bb0011a06dd04b79dfe2
Size

8KB
MD5

0acc1dbede45bb0011a06dd04b79dfe2
SHA1

0261e095a75d4bf979ae9cceb6c5af3435a4c0af
SHA256

8f1cc95b1a805d4379c3351b73dff12f0fb1cf41a7c2c8c50aa3d0dc37037fa7
SHA512

7cd10751a987502ec493c396074c0320e98e7b65179e6d15efb8b88ff8dbf781b1bfd2a1b37387b5a19e3379059f3ecae7623041c21e26af39a91d76f37784b8
SSDEEP

96:qPnvUdP/WTOJSP8i2WJB5HdwCOWsdNGW:q0dPtin7r1Zsdg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0acc1dbede45bb0011a06dd04b79dfe2

Files

0acc1dbede45bb0011a06dd04b79dfe2
.exe windows:4 windows x86 arch:x86

d9706cee471cc35138696a17d6a9de69

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
HeapCreate
ExitProcess
lstrlenW
WriteConsoleA
CreateSemaphoreW
HeapDestroy
CloseHandle
Sleep
OpenEventA
GetVersion
CloseHandle
FindClose
GetEnvironmentVariableW
SetLastError
DeleteFileA
GetStartupInfoA
SuspendThread
FindResourceExA
GetCommandLineW

user32

GetKeyState
CallWindowProcW
GetWindowLongA
SetFocus
IsZoomed
GetClassInfoA
DispatchMessageA
DrawTextW
PeekMessageA
FindWindowA
GetSysColor
DispatchMessageA
CreateIcon

docprop

DllGetClassObject
DllGetClassObject
DllGetClassObject
DllGetClassObject

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 424KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 287KB - Virtual size: 286KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ