0cfbefeb76ddda753c9cab5bf18d5f96 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0cfbefeb76ddda753c9cab5bf18d5f96
Size

36KB
MD5

0cfbefeb76ddda753c9cab5bf18d5f96
SHA1

731b43295a87cce2407f25a0950baf9667b5bb46
SHA256

3775c03eb57a11066ee2f9fca3d2565588654c04f1f38ab01121d312e456d6ef
SHA512

43cfe3711bb9f7a1133de13066a5b5017efdc68bbe6b2a18c8dad7a1421cd58fc0c07b07cdfd0072143a74e449a72d2e59267358d82feaac49ff80195a3a7c94
SSDEEP

768:7cmw01FIKh2+3Fck3yLHGvtxQzPheHZNSGn/Bo:oW1b93FTCLHGvtxQD8OOa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0cfbefeb76ddda753c9cab5bf18d5f96

Files

0cfbefeb76ddda753c9cab5bf18d5f96
.exe windows:4 windows x86 arch:x86

4edb463c5d0b48f6d73041d57cbdb7f1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CompareStringA
ExitProcess
GetFileSize
GetLastError
GetVersion
GetVersionExA
VirtualAlloc

msvcrt

_except_handler3
_wcsicmp
srand
swscanf
time
wcscat
__set_app_type

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ