600f106ca7edfcf2f7e5dfb27753aeb4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

600f106ca7edfcf2f7e5dfb27753aeb4
Size

115KB
MD5

600f106ca7edfcf2f7e5dfb27753aeb4
SHA1

e7c78a51f38c5f537aa071f5703e6f6bc781a854
SHA256

f006f8cdaaf0ce09660216f05fb1da905e49981f659754caf2c87f1053770150
SHA512

8ad7ce3d1996c7b8f622af3f4672694b6bcce4fabb3d574b54795b2144e180944a9ed77e8fcacdd41edbe08fdf08a7dec3718487b39983a22066d45ea5130acb
SSDEEP

3072:hwQif2kOea6DfQg9kaEQJP8IkwrGKEqSGFXHsmcUIJ3OckvmOkWX9:hEf2kOea6Dt9kanPrzhsLHgckvmOh9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
600f106ca7edfcf2f7e5dfb27753aeb4

Files

600f106ca7edfcf2f7e5dfb27753aeb4
.exe windows:4 windows x86 arch:x86

e8a8bb358dbb693a6ab0d7994a4713fc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetTickCount
LoadLibraryA
UnmapViewOfFile
GetLastError
GetFileSize
LoadResource
CreateFileMappingA
Sleep
GetLocalTime
OutputDebugStringA
GetModuleHandleA
CreateFileA
FreeLibrary
LocalFileTimeToFileTime
SetFileTime
MapViewOfFile
CloseHandle
GetStartupInfoA

user32

wsprintfA

shell32

DoEnvironmentSubstA

msvcrt

sprintf
fread
fclose
fwrite
fseek
_access
memset
strcpy
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
strlen
memcpy
strcat
fopen

crypt32

CertFreeCertificateContext
CertAddCertificateContextToStore
CertOpenStore
CertCreateCertificateContext
CertCloseStore

shlwapi

PathFileExistsA

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ