25cc964ad9dba9aec0ee3daa1d5e8fef | Triage

Sharing

Copy URL Twitter E-mail

General

Target

25cc964ad9dba9aec0ee3daa1d5e8fef
Size

244KB
MD5

25cc964ad9dba9aec0ee3daa1d5e8fef
SHA1

980b245ad000f133008ddd0362ec8a4d8c6389b2
SHA256

d959c3e5e11105d91f15881bb20a5254867da1b8e3787c2ac7e1fb87e4d7b734
SHA512

2130d1bc0527248deb571b4b4a3c27faf31bbed0624954d1ebb2aaad89071c8ccfff492b77ae1a1abe9200c09545eadce9c409d6c0803c87ff3ba44e1af16fee
SSDEEP

3072:CRWdwcsMy+r1IsDG5aDDHTJOWavcnyhlUxQNu4myVyLD88t77jtcMHORduIH4Sxm:Codwc01sicvZ6bTU6zmyMLDl7F9V7Sx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25cc964ad9dba9aec0ee3daa1d5e8fef

Files

25cc964ad9dba9aec0ee3daa1d5e8fef
.exe windows:4 windows x86 arch:x86

21ad0e47ba32daaa1ba3cc612f102b15

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadResource
WriteConsoleOutputW
EscapeCommFunction
GlobalSize
LoadLibraryW
GlobalFlags
BuildCommDCBA
CreateDirectoryExA
MapViewOfFile

user32

LoadMenuIndirectA
CheckDlgButton
GetMenuItemInfoW
GetProcessWindowStation
CreateAcceleratorTableA
CharNextW
GetSystemMetrics
GetKeyboardState
CreateWindowExA
IsWindow
ExcludeUpdateRgn
SetProcessWindowStation
GetKeyState
SetRect

gdi32

CreatePatternBrush
SetICMProfileA

Sections

.text
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 804B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 172KB - Virtual size: 169KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data0
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE