4cce581b4f0c7297b653e01e1d17d46e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4cce581b4f0c7297b653e01e1d17d46e
Size

309KB
MD5

4cce581b4f0c7297b653e01e1d17d46e
SHA1

13ecd06cf067d2d81579f29d9af7a1a8483a0ec9
SHA256

db26dd643f0419d4089e4b4490b9cd2e7bb40dce6ce98d14ffc86329ca708dc4
SHA512

ec4c97444329f5859403e71e70c51a15476be9427ead35e3956d962e2f8273caffce1b9066169b9ebcbf524104634bf48860b9aa4728bc644706f32abc27f82c
SSDEEP

6144:0vcdpf4IhqLGWAHLdIlZasU4NtcgKlhNYbbcMr0773mhXW:0Of4yOGWAHB1mNkljYncMrk72hXW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4cce581b4f0c7297b653e01e1d17d46e

Files

4cce581b4f0c7297b653e01e1d17d46e
.exe windows:4 windows x86 arch:x86

5048296f7947fe2b98bec877df09eb12

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
GetKeyboardType
CreateWindowExA
DdeCmpStringHandles

kernel32

GetModuleFileNameA
GetEnvironmentVariableA
ExitProcess
FormatMessageA
GetLastError
SetLastError
GetProcAddress
VirtualProtect
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
GetModuleFileNameW
GetVersionExA
VirtualFree
VirtualAlloc
GlobalAlloc
SetFilePointer
ReadFile
CreateFileA
DeleteCriticalSection
TlsSetValue
lstrcpyA
Sleep

advapi32

RegQueryValueExA
RegSetValueExA

oleaut32

SysFreeString
SafeArrayPtrOfIndex

version

VerQueryValueA

gdi32

UnrealizeObject

comctl32

ImageList_SetIconSize

shell32

ShellExecuteA

wininet

InternetGetConnectedState

urlmon

URLDownloadToFileA

netapi32

Netbios

wsock32

WSACleanup

Sections

.text
Size: 24KB - Virtual size: 572KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE