4ccd2b633cc2e1ddda90876737a282bf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4ccd2b633cc2e1ddda90876737a282bf
Size

955KB
MD5

4ccd2b633cc2e1ddda90876737a282bf
SHA1

26b5818dde4815acd1fc2eaa996a4e978608043a
SHA256

35d054390103b10aaa34b36b79400e2e7a9be242194a8fb868aaab059600a4eb
SHA512

306e2d7bdecaf66b569ef0933fbcb666f359e62af978272f909beb3d0a7ab486a07557e14b2f5e40d3bd04e8589304b070a17aedea108bd3cc9c6474042a1ee3
SSDEEP

12288:ycsoCUyZtwAvAs4wTCyrPT0yq0VezaOvoJpaz/g/J/vVoS:NPty/wAvN7lry0VeH8az/g/J/No

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ccd2b633cc2e1ddda90876737a282bf

Files

4ccd2b633cc2e1ddda90876737a282bf
.exe windows:4 windows x86 arch:x86

0ac4fee2c70f11d8026ac06e0ba2f04f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
LoadLibraryA
WinExec
ExitProcess

Sections

.data
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.snow
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE