0ca6af89e868fdd5d8115bebf77c5c9c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0ca6af89e868fdd5d8115bebf77c5c9c
Size

70KB
MD5

0ca6af89e868fdd5d8115bebf77c5c9c
SHA1

f050448e3d19452ed04d25ef907b643cc31953c0
SHA256

02853fa6a6d9e92e67238c7555fc51f88e9e9c5b72e79c57c3038da78c1b4726
SHA512

0dfb0aa85bc4416c5d82024a5c17126d435e00b200c9f43e2a67a29dd2f3d378ca8a1f1d5c948f3a333ce3f5c8a88945b11d848ea6a1afe884b32e4c1e345a4f
SSDEEP

1536:bAdT/CF0vFwAhZg3UVuqOAmYLok88kU13jvfF0czxqY:YTKFkFThxV+Yh88tZ9zZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ca6af89e868fdd5d8115bebf77c5c9c

Files

0ca6af89e868fdd5d8115bebf77c5c9c
.exe windows:4 windows x86 arch:x86

eded6922f6d2739bd469f34093ee2598

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFree
LocalAlloc
LoadLibraryA
VirtualAllocEx
GetCurrentProcess
ExitProcess
GetCommandLineW
lstrlenA
GetLastError
GetModuleHandleA
MulDiv
LocalReAlloc

user32

TrackPopupMenu
ShowScrollBar
LoadIconA
SystemParametersInfoA
GetFocus
GetMenuItemCount

gdi32

CreateCompatibleDC
GetBkMode
GetDCOrgEx
RestoreDC
CreatePenIndirect
GetBkColor
SelectObject

Exports

Exports

7pm0sf0E@4
_QUC9ouGJUaN@12
_JuK74aYzZlCQ@20
opeM5Xrx

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 47KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ