4cfb7f050eb8aa31159cc617a7f6c2ec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4cfb7f050eb8aa31159cc617a7f6c2ec
Size

329KB
MD5

4cfb7f050eb8aa31159cc617a7f6c2ec
SHA1

363d1befdca1c7d062b1a515bb634c216d064870
SHA256

2ce64e01bf25dcf9b0e3b95228df3cdcd73717fbd711fae3591509622c67ed2e
SHA512

27930da5c6ebb58f135929c7f4357f619d46c86bb88dd99b81a7cbf198425c13718242bf1042117c71c27de0ab13b7dd7de098834e4699468b92b70c1b12e2de
SSDEEP

6144:H7t0iB8aXLEdgRwshPHsG/7TIKm2OKXlmL0eOmPehGiD+tVJMWIcS:h0iBl0mNTTY25ognmmhsV+W+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4cfb7f050eb8aa31159cc617a7f6c2ec

Files

4cfb7f050eb8aa31159cc617a7f6c2ec
.exe windows:4 windows x86 arch:x86

e775b008c9edcaa96af244da8790fb57

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
CreateMutexA
InterlockedExchange
HeapDestroy
SetConsoleIcon
CloseHandle
GetTickCount
SetEvent
SetConsoleMode
VirtualProtect
OpenSemaphoreA
ExitProcess
FindVolumeClose
LoadLibraryW
SetConsoleTitleA
GetLastError
GetLogicalDrives
GlobalLock
ReleaseMutex
GetModuleHandleA
UnmapViewOfFile

user32

DispatchMessageA
GetScrollRange
GetMenuStringA
PostQuitMessage
TranslateMessage
ShowWindow
MessageBoxA
GetWindowLongA
DestroyMenu
PostMessageA
LoadIconA
EnableScrollBar
SetPropA
EqualRect
DialogBoxParamA
DrawFrame
ModifyMenuA
InsertMenuA
GetDlgItem
UpdateWindow
GetSubMenu
InflateRect
GetKeyboardLayout
PrintWindow
GetMenu
GetParent
SetWindowPos
GetTitleBarInfo
ScrollDC

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ