1cb81003e23aa0e339b7c0a80f4fbf8d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1cb81003e23aa0e339b7c0a80f4fbf8d
Size

60KB
MD5

1cb81003e23aa0e339b7c0a80f4fbf8d
SHA1

1452b925bc75a521ecb8c0ad975348f38abc76c9
SHA256

57bc1badcff6e82e2dba0de208c3c228e0ea4edc52d7e5e596c0bd4edce7f4b3
SHA512

72d4f36b38bad7bd3c387febfef771cfb25a5a7731f1bf3bff3cdb74ae7b1effe5bc19414b0ca9f6211f074d5b08b21f2c4ccfd4511b7a42a746015f6d8c21cf
SSDEEP

768:oarUBBKunCtlRqERCGjTpqNq66H/aFHHezHGGDj/57DCE61JD4NDkdGN0KH+pNSY:o190TIAG3YHGGH5fI1J0kbKH+KB33jXe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1cb81003e23aa0e339b7c0a80f4fbf8d

Files

1cb81003e23aa0e339b7c0a80f4fbf8d
.exe windows:4 windows x86 arch:x86

3e7e4e28ecfe474a01f1a96e7a19cf47

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddConsoleAliasA
SetThreadAffinityMask
LZCreateFileW
DuplicateConsoleHandle
_lclose
GetVDMCurrentDirectories
RemoveDirectoryA
SystemTimeToFileTime
CreateWaitableTimerW
FindFirstFileExW
CreatePipe

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE