0c0fe34dbcb88d1426477a45172d6c53 | Triage

Sharing

General

Target

0c0fe34dbcb88d1426477a45172d6c53
Size

90KB
MD5

0c0fe34dbcb88d1426477a45172d6c53
SHA1

a3f6142ece2997786402c7becc83754ce0bf3514
SHA256

5df32f15d765ecd15ac66f3a5de2983ad974f0b598757e1e610a636cf4e1263d
SHA512

94d3ac21c8939c19b721f9ebd1ccbfa4953b0d45b4ff2dd1cf8d39e9db873bc6fe350ec7b6efe85631595bda5cb32d3f91980f13e5e02d6428065e8ef2cd9354
SSDEEP

1536:7FVm1iS6C8b2Pk1VZlU0t9ClE8CJS6yUD/pz0psG9UySMUYcUcLfg3A9czpO0164:7u1sC8To0tElE8CJS6yUD9M94IcVLfip

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c0fe34dbcb88d1426477a45172d6c53

Files

0c0fe34dbcb88d1426477a45172d6c53
.exe windows:1 windows x86 arch:x86

8adb1fb0afc4af983bc104caa48129c5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

crtdll

_ftol
_iob
exit
_commode_dll
_fmode_dll
_XcptFilter
__GetMainArgs
_except_handler2
_exit
_initterm
__mb_cur_max_dll
_errno
_isctype
_pctype_dll
_setmode
fclose
fflush
fopen
fprintf
fputc
free
getc
malloc
printf
putc
putchar
realloc
sscanf
strchr
strerror
strrchr
tolower
vfprintf

Sections

.text
Size: 11KB - Virtual size:

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 1024B - Virtual size:

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.sbss
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE