0d6c1e53bc908df9a0382f4131bf8666 | Triage

Sharing

General

Target

0d6c1e53bc908df9a0382f4131bf8666
Size

429KB
MD5

0d6c1e53bc908df9a0382f4131bf8666
SHA1

7d322d4aac3ae647a73ad034a6a013588678c863
SHA256

e43624ca6ffe1818f1646e4f3cef5c67f40211719dc25c99bdc247c26ef4ce9b
SHA512

fedc8c498fc04d548d45da0977234dde1bc41682779babefd0cd96b1f267d63f70fd66223863c3fdc92578c10a21fb74180ace68255cc84aa14617d91c5ce489
SSDEEP

12288:BCTPFRnysHt5Nww3E3NO7wuI2ttwLZnZM2hJbc7Tp3iKAq+z:AFRnysNbwQEdjH2jwZ/fofpQq+z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d6c1e53bc908df9a0382f4131bf8666

Files

0d6c1e53bc908df9a0382f4131bf8666
.exe windows:4 windows x86 arch:x86

0a0c205c41bc41960c38df9de0e32e23

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileType
IsValidCodePage
GetLocaleInfoA
SizeofResource
GetOEMCP
HeapAlloc
GetProcessHeap
ExitProcess
GetCommandLineA

user32

InvalidateRect
DefWindowProcA
MessageBoxA
GetDesktopWindow
CreateWindowExA
SetFocus
DestroyWindow

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 404KB - Virtual size: 403KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ