005b788e0cdbfc3b2ddabe2a637dd7c8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

005b788e0cdbfc3b2ddabe2a637dd7c8
Size

107KB
MD5

005b788e0cdbfc3b2ddabe2a637dd7c8
SHA1

0cc19acb3482435d6c5c0f9f1e323719ebcd5c86
SHA256

f589cfe3c07dc25343ec27d4ae6fbe85a95adb1757533425f9ccecdb222d0190
SHA512

f8e5ccaba4ed9596071bc6ae274256de40d1b2b5277aef9b37dc2ae19b4eac16beb9bc352ff877dbf7538f48b888862239571ec9ac76ac8b38bad28e2c5f3976
SSDEEP

3072:adKxB1qGTjkmlOPezCPSF/RDtadjg3nJ5:0Q4ECPApZadjCn7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
005b788e0cdbfc3b2ddabe2a637dd7c8

Files

005b788e0cdbfc3b2ddabe2a637dd7c8
.exe windows:4 windows x86 arch:x86

452e807d179221a69a9f39536182a2fb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

urlmon

URLOpenStreamA
IsLoggingEnabledA
CoInstall
GetClassFileOrMime
AsyncInstallDistributionUnit
IsValidURL

gdi32

SetICMMode
SetRelAbs
ResetDCW
StretchBlt
SetDIBColorTable
UpdateColors
SaveDC
TextOutW

shell32

StrRChrIA
SHFormatDrive
SHAppBarMessage

Sections

.text
Size: 24KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE