4cb1beeabfff2aea85a352f80a7de370 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4cb1beeabfff2aea85a352f80a7de370
Size

209KB
MD5

4cb1beeabfff2aea85a352f80a7de370
SHA1

5e188804f511f33e3e36f0f93e580bcc7170c6a0
SHA256

28f630f97eac7828024f13b83b4bf125ce51b4ba4847719a7212cb4917234433
SHA512

93f61540d8a4f1142cc1ba54518be850d10a2bc1c988bebc517c41570796efb85345da22051263969249c386c8379e46d98c2a2942a387c031007e184a076bcb
SSDEEP

3072:20apXIGJ+43BYHpug2cOke0VtqqixsBZ:yGGJZBYHT2cFe0VXB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4cb1beeabfff2aea85a352f80a7de370

Files

4cb1beeabfff2aea85a352f80a7de370
.exe windows:4 windows x86 arch:x86

157a138289bd17ddf4449c4448b04fe5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryA
LoadLibraryA
CopyFileA
IsBadReadPtr
GlobalUnfix
GetVersion
GlobalUnlock
ResumeThread
GetTickCount
CreateEventA
CopyFileExW

Sections

CODE
Size: 1024B - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 66KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 893B - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.2DATA
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE