4c69cdbfa7323d60303b34def656e765 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c69cdbfa7323d60303b34def656e765
Size

391KB
MD5

4c69cdbfa7323d60303b34def656e765
SHA1

7ead173f3f3e72152ebc3e1e09d0c0717add650c
SHA256

7868fbcf5005c4832ad9976797f8d1d75d9c9c773d35098fd03343c6e5641b26
SHA512

b2e025b8f97637f5f1056bef8f578761a47653c5abfebbd736a722f80ebf7a56a4b5a805d282efa94c1e1584ee2eb4ba2b64348b9c32317025aa8bad0111a311
SSDEEP

12288:0I0Tgwvlw2Ts6K+/gtIqK1UvmG77hc7TX9N:0pwd+/RaJCTX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c69cdbfa7323d60303b34def656e765

Files

4c69cdbfa7323d60303b34def656e765
.exe windows:4 windows x86 arch:x86

eec99328d9e8a3de1ec52633f49015d2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetVersion
FreeLibrary
GetTickCount
LocalAlloc

gdi32

CreateSolidBrush
GetBkColor
GetDeviceCaps
PatBlt
SetROP2
GetTextMetricsA
MoveToEx
GetPixel
LineTo
SelectObject
GetObjectA
DeleteObject

Sections

.text
Size: 512B - Virtual size: 510B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 972B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrs
Size: 386KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ