1c8ed90cb7673aa39f3b24ef0615adc1 | Triage

Sharing

General

Target

1c8ed90cb7673aa39f3b24ef0615adc1
Size

24KB
MD5

1c8ed90cb7673aa39f3b24ef0615adc1
SHA1

b5947d991e7cb66c4e8bccb51bd9a98badba64f6
SHA256

798d5b8221fe7ea2def38d2692d7f4381e0c87b5bdce0873876859cd4738fad0
SHA512

a10986ede01826fd9a8cffd60eca5c1f40352504b5b58f70c435f88927816e1b766befb984900a0b933b0d3c6f3ddeab4ea8f27d72c129cb52caad0475bddc80
SSDEEP

384:v2vblEIq2aYrWggd8Gl60Slt3ynmu5cLXrkiCqvoak3XTDHDdxHD23uFW:uK8aYrWfqGg0SMmuebrxyjD5dDTW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1c8ed90cb7673aa39f3b24ef0615adc1

Files

1c8ed90cb7673aa39f3b24ef0615adc1
.exe windows:4 windows x86 arch:x86

2bc6aa6c6653ddc44019c01b2faaa08a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_XcptFilter
_initterm
_purecall

kernel32

ExitProcess
GetOEMCP
SetUnhandledExceptionFilter
CloseHandle
GetStartupInfoA
GetModuleHandleA
SetConsoleCP
GlobalFree
VirtualProtect
lstrlenW
HeapDestroy
DeleteFileW
SetStdHandle
EnterCriticalSection
GetEnvironmentStringsW
LoadLibraryExW
Sleep
SetCurrentDirectoryA
VirtualAlloc
GetVersion
HeapAlloc
GetEnvironmentVariableA
GetACP
GetLocalTime
GetStringTypeA

user32

CharNextW
SetFocus
GetLastActivePopup
GetWindowRect
GetCursorPos
PeekMessageA
CopyRect
TranslateMessage

version

VerQueryValueW

gdi32

DeleteDC
CreateRectRgn

advapi32

RegQueryValueExA

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE