1169cb9b48caa68f0d21856d914ed37c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1169cb9b48caa68f0d21856d914ed37c
Size

33KB
MD5

1169cb9b48caa68f0d21856d914ed37c
SHA1

d414a4b1f32e066ba238dce16252084abc69e80f
SHA256

a7d03aee4eee3184debfc8baaf04e4818f5c23eddb5ba22fbdbd4b52776c08aa
SHA512

e9cd533b621c8cbb7d7032a7f0ccddffa93b8ba79e5ac4e363e137130f7f0216a2559f0078ad7679934388f2949ad13940118c40e828f16a051063cebc140312
SSDEEP

384:Vwf7uxYHsJcZL2xqDQhGcJUZ8iePnHaFE4s8QueYkTVARp+aHMSEmd0wfInBrUPJ:WjuxYHKaL2xqDH8XmEmkBSp+KUBiWpY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1169cb9b48caa68f0d21856d914ed37c

Files

1169cb9b48caa68f0d21856d914ed37c
.exe windows:4 windows x86 arch:x86

764e46b4e886fb56ad221fd03be8b7a7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DdePostAdvise
CascadeWindows
ClientToScreen

msvcrt

_mbccpy
_mbctombb
_mbsdec
_pctype
_snprintf
_snwprintf

kernel32

CompareFileTime
CopyFileW
CreateThread
DefineDosDeviceW
EnumResourceTypesW
GetCommConfig
GetConsoleWindow
GetDateFormatW

Sections

.text
Size: 20KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE