0cbb854d1406b7013fe1fc7deeb38a78 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0cbb854d1406b7013fe1fc7deeb38a78
Size

9KB
MD5

0cbb854d1406b7013fe1fc7deeb38a78
SHA1

b16cadd4665f8e378f8c2f79ab419f99fd8a88a6
SHA256

98742a15023a53b53a9ecf1dacea07e39910916f42642f1a4b85152fef34acf9
SHA512

8d2f4e8c872125f9dc627aee243da20fbad242275e02b19b7ef900c99d5530f85fac7bee77e2e4f18cd15ffa2dd63b671bee7bfcce6dd1efb577804fd0be508f
SSDEEP

192:DZqhx+DwRh1j4ihEUnyR7HlHdMge7zDsLiKJl:l4AMRhyWEoyR7HpdMj7zDnKJl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0cbb854d1406b7013fe1fc7deeb38a78

Files

0cbb854d1406b7013fe1fc7deeb38a78
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.AntiDot
Size: - Virtual size: 148KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.AntiDot
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.AntiDot
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SISCrypt
Size: 316B - Virtual size: 316B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE