0c97e9fc329da3d376580ed029163668 | Triage

Sharing

General

Target

0c97e9fc329da3d376580ed029163668
Size

178KB
MD5

0c97e9fc329da3d376580ed029163668
SHA1

363a33a6ad127a9cb686cd397e20f9b3b81f41ba
SHA256

63e2c4539a785469479023bcdc0c89924e2cda8338388bd47fddb7250a3814f9
SHA512

345df06e259ce233bd7893565d3c385b0041b1eeb322c9a14ab316c5c119755d5b94b3d290e47d9e328c31e60ae1257b11310e33d8473f2b62215060e5587428
SSDEEP

3072:P8v6xMdc3Cpw5RCpw5DKf3eKf3Xa3zNCEd:k6xMdVw5Kw5DeOeaDIEd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c97e9fc329da3d376580ed029163668

Files

0c97e9fc329da3d376580ed029163668
.exe windows:5 windows x86 arch:x86

757964df52dc8cbac6d653a8aa6fbeb8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryW
ReadConsoleInputExA

user32

CharUpperA
SetUserObjectInformationA
RealGetWindowClassW
SendDlgItemMessageA

gdi32

CreateICA
GetOutlineTextMetricsA

Sections

.data
Size: - Virtual size: 27KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data?
Size: 11KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 900B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 371B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ