67cf8c779974acf40ea1f7c8bdcbcdae | Triage

Sharing

General

Target

67cf8c779974acf40ea1f7c8bdcbcdae
Size

28KB
MD5

67cf8c779974acf40ea1f7c8bdcbcdae
SHA1

729ec1e6947fe90ef98cd13ef997755b2b040355
SHA256

9e0f7769b06ecf03ba7db163afd3b4b59753c8cf184bf6818629b0ee95f7da12
SHA512

8a5d250ddcd40220b50943d213a18420147584bc66f2709a2bafcfa6fd56ce2b9b408a2b1ff3cb5b701781a782750be76af6b210ba6d217e8e49eb603a0f1ea9
SSDEEP

768:qlZcWo8ehlBwnZIj42xSs/jI72RGOMD6sWG8+78N:+ZcVfh0Ij7/Zg608v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
67cf8c779974acf40ea1f7c8bdcbcdae

Files

67cf8c779974acf40ea1f7c8bdcbcdae
.exe windows:4 windows x86 arch:x86

7ca509964d30ad1afc6c6de3ec5fc613

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
CopyFileA
GetProcAddress
LoadLibraryA
GetComputerNameA
SetFileAttributesA
FlushFileBuffers
SetFilePointer
ExitProcess
GetTickCount
GetStartupInfoA
GetModuleHandleA
CloseHandle
ReadFile

user32

CreateWindowExA
RegisterClassA
LoadIconA
UpdateWindow
ShowWindow
LoadCursorA

wininet

InternetOpenA
InternetCloseHandle

gdi32

GetStockObject

msvcrt

__getmainargs
_wcsicmp
_controlfp
_except_handler3
__set_app_type
sprintf
malloc
rand
srand
_exit
_XcptFilter
exit
_acmdln
_stricmp
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE