0d9cb0a03d97a42dbdd5f1228f5f8339 | Triage

Sharing

General

Target

0d9cb0a03d97a42dbdd5f1228f5f8339
Size

221KB
MD5

0d9cb0a03d97a42dbdd5f1228f5f8339
SHA1

30904e517db3a13c86cba615521e0afaae3f9235
SHA256

bddb300d01df8c12d8661edeae0552c422538b0f4bd86440948ae1445f15feed
SHA512

29abdf91f3a0d3845514fff1e8fb504492c22032218d036de0ca575326ca8dcee0767503c8ee77191b2d00f95722c5ce87ac4a597ea2c48cb4f3811113be383f
SSDEEP

6144:+KpiGC0eL5HTxXgcpPTTOc9X3Hz8hG1OSv3Z:+rLL5HTlrPTUA1OSvJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d9cb0a03d97a42dbdd5f1228f5f8339

Files

0d9cb0a03d97a42dbdd5f1228f5f8339
.exe windows:4 windows x86 arch:x86

e741ea1e737b04a278ac3b461e6c427b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
GetThreadLocale
GetCurrentThread
GetProcAddress
LocalFree
VirtualAlloc
GetLastError
LocalAlloc
GetFileType
GetSystemInfo
GetModuleHandleA
GetVersionExA
LoadLibraryA
CloseHandle

user32

CharNextA
GetFocus
GetKeyState
DispatchMessageA
TranslateMessage
BeginPaint
GetMessageA
EndPaint

advapi32

RegOpenKeyW

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 684B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ