0c0d0a6706650598ee46e730a3850ff3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0c0d0a6706650598ee46e730a3850ff3
Size

108KB
MD5

0c0d0a6706650598ee46e730a3850ff3
SHA1

b1cdfa2c24626baf476c10c4087374bd27a35b5a
SHA256

615b72e54968a3f378984930e8be54a9f76d5f16cb0105372e15df9198020870
SHA512

b6be6e81cb919940e7370fb7eafbcaf17e1311322d1c140892d602289340c88ddab64880a3957a382992db93a065615966bf68d5a3f5b0626424d549beec9725
SSDEEP

3072:zQ2saE0CTWrguASgaZv+/k/2gQV1nIffmJ6sbIJ+ACx2rXLu:zJsN0CTWsuj/+/T1emJ1btXuu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c0d0a6706650598ee46e730a3850ff3

Files

0c0d0a6706650598ee46e730a3850ff3
.exe windows:4 windows x86 arch:x86

5f85b66ea81c0101c1aa18f2727704c1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
CopyFileA
ExitThread
CreateFileA
WriteFile
CloseHandle
GetFileSize
CloseHandle

user32

MessageBoxA
MessageBoxW
MessageBeep
MessageBoxExW
MessageBoxExA

Sections

.text
Size: 75KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE