5c1a5ee96394c4776d9c1b059499a1ae | Triage

Sharing

General

Target

5c1a5ee96394c4776d9c1b059499a1ae
Size

12KB
MD5

5c1a5ee96394c4776d9c1b059499a1ae
SHA1

4ca7dc2b1043db8700d83fdc83b1889269c4e6cc
SHA256

cfe6c7c1ec6d77c842c44ce472e516d609bbd61133f4a3e3b682b42b2ba9c6e4
SHA512

d46516838df190078b255c0f4034934f07b555cdf5f54bbf945fb70c9332e2a902f139d48b3890121f241dcb734c109c8428639e4e0cdce6e26c9d62ba144867
SSDEEP

384:2grBVF3PIaRg45GIZUfH8rr3mlet3Z2Zk8y8yYz27ggR0TlAIQdjoDIqAd5M6l+O:2grBVF3PI2g4kIZUfH8rr3mlet3Z2Zk9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c1a5ee96394c4776d9c1b059499a1ae

Files

5c1a5ee96394c4776d9c1b059499a1ae
.exe windows:4 windows x86 arch:x86

52eba32e8f8c8720cf9a02eee115e586

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcr71

strcat
rand
exit
_except_handler3
strcmp
_vsnprintf
strchr
strlen
_exit
_XcptFilter
_ismbblead
_cexit
_acmdln
_amsg_exit
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
__dllonexit
_onexit
_controlfp
__CxxFrameHandler
memset
srand
sprintf
strcpy
strstr
_c_exit

kernel32

GetTickCount
GetStartupInfoA
LoadLibraryA
GetProcAddress
GetModuleHandleA
Sleep

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ